Bad news for users Open Sea. The main market for NFTs confirmed that suffered the filtering of the emails of its userswhich has turned on an alarm light due to the potential increase in cases of phishing. And the platform targeted an employee of Customer.iothe service you use to distribute your emails, as the party responsible for the event.
According to the company explained, the subject in question “misused his employee access credentials” to download the emails linked to OpenSea and share them with an “unauthorized third party”. This affects both the addresses used by users registered in the marketplaceas well as subscribers to its newsletter.
Attentive to this situation, OpenSea opened the umbrella before it started to rain. Its managers have already warned that the filtering of the emails of its users possibly leading to an increase in fraudulent activity; especially by bad actors who intend to use the opportunity to scam users.
The marketplace of NFTs reported that users should be especially careful not to interact with e-mails from addresses that have nothing to do with the platform. Thus, they have remembered that the official accounts of OpenSea are opensea.io and not opensea.org, opensea.xyz or other variants that may appear.
They have also recommended never downloading anything that comes from a supposed e-mail from OpenSea. As well as not sharing your passwords or the secret phrases of your wallets of cryptocurrencies and non-fungible tokens.
It is not the first time that OpenSea has suffered a security problem
Although this time it has not been a hack of OpenSea itself, but rather the misconduct of an employee of the company that provides a service, it is not the first security problem to which the platform is exposed. Already last February there was an attack by phishing that allowed the theft of NFTs, valued at 1.7 million dollars, from almost twenty users.
At the beginning of May, meanwhile, the marketplace He had his Discord server hacked. This forced its managers to request via Twitter that users not access any link that was shared in the community. Despite this, a small number of people were affected by the attack.
In June, meanwhile, the United States Department of Justice arrested a former product manager for trading with privileged information about NFTs. The subject, identified as Nathaniel Chastain, was charged with wire fraud and money laundering. What was he doing? He would buy tokens that he knew would be promoted on the front page of OpenSea cheaply, and later sell them at a higher price. It is estimated that under this modality he obtained benefits valued between two and five times more than what he had originally paid for each one.