© 2022 CyberNews - Latest tech news,
product reviews, and analyses.

If you purchase via links on our site, we may receive affiliate commissions.

OpenSea suffers a massive email data breach

The NFT giant OpenSea discovered a huge data breach after an employee leaked customers’ email addresses to an unauthorized external party.

An employee of Customer.io, OpenSea’s email delivery vendor, exploited their access to download and share email addresses of the company’s users and newsletter subscribers to a third party.

The NFT giant claims that all users who have previously shared their email with OpenSea should assume they have been affected.

“We are working with Customer.io in their ongoing investigation, and we have reported this incident to law enforcement,” OpenSea stated in a press release.

OpenSea is a huge platform with almost 1.9 million active users, according to Dune Analytics.

Now, the company warns users of impersonation attempts and encourages them to stay vigilant in light of the recent breach. Since emails were affected, phishing attacks are to be expected.

“Please be aware that malicious actors may try to contact you using an email address that looks visually similar to our official email domain, ‘opensea.io’ (such as ‘opensea.org’ or some other variation,)” OpenSea warns.

Some of the possible phishing addresses may include opensae.io, opensea.org, and opensea.xyz. The only correct address is opensea.io.

In order to prevent security incidents, make sure not to download any email attachments (OpenSea emails never include those,) avoid sharing or confirming your passwords or secret wallet phrases (OpenSea will never request this,) and never sign a wallet transaction prompted directly from an email (OpenSea emails will never contain such links.)

OpenSea has previously been in the spotlight for scam incidents, with threat actors using outdated contracts or poisoned tokens – malware disguised as NFTs.

More from Cybernews:

China mimicked protestors to tighten grip on coveted metals, says report

Ukraine arrests cybercrime gang for operating over 400 phishing websites

Posts offering abortion pills removed on Facebook and Instagram

Messenger chatbot used to hunt for Facebook credentials

Three individuals accused of selling $88m of pirated software

Subscribe to our newsletter

Leave a Reply

Your email address will not be published. Required fields are marked