July 21, 2024
OpenSea NFT Users Experience Extensive Email Phishing Campaign Incidents
NFT

OpenSea NFT Users Targeted in Email Phishing Campaigns

Users of the prominent nonfungible token (NFT) marketplace OpenSea are facing a new wave of email phishing attacks. These attackers disguised themselves as OpenSea and sent deceptive emails containing harmful links.

Reports on social media indicate that OpenSea users and developers are falling prey to various email phishing campaigns. The tactics include posing as a fake developer account risk alert and a counterfeit NFT offer.

One OpenSea developer disclosed on X (formerly Twitter) that they received a phishing attempt targeting an email dedicated solely to their OpenSea Application Programming Interface (API) key. The post suggested that the real aim of this campaign is to target developer contacts, implying that these details may have been extracted from OpenSea.

Despite OpenSea’s assertion that the platform hasn’t been hacked, users are advised not to click on links they don’t trust. This comes in response to ongoing phishing attempts.

A user on Reddit expressed confusion about the phishing campaign, reporting an influx of emails regarding NFT listings and offers, despite not having used OpenSea for years. The emails contained links attempting to prompt installing a potentially malicious app.

This situation follows a security incident involving one of OpenSea’s third-party vendors, exposing information related to user API keys. OpenSea confirmed this breach in a notification email to affected users in late September 2023, revealing potential leaks of user emails and developer API keys.

OpenSea users have experienced phishing attacks before. In February 2022, OpenSea confirmed a phishing attack outside its website and cautioned users against clicking on links in suspicious emails. The platform also investigated rumors of an exploit related to OpenSea-associated smart contracts.

This latest phishing campaign occurred shortly after OpenSea laid off 50% of its staff, citing plans to launch OpenSea 2.0 with a smaller team.

This incident reminds the cryptocurrency community to remain vigilant when receiving emails from service providers. To thwart phishing attempts, users should exercise caution regarding email sender authenticity and refrain from providing personal data, as legitimate crypto firms never request details like wallet addresses or private keys.

Image by rawpixel.com on Freepik

Disclosure Statement: Miami Crypto does not take any external funding, or support to bring crypto news to the readers. We do not have any conflicts of interest while writing news stories on Miami Crypto.

Related posts

Vitruveo’s NFT Sales Soar Past $1 Million, Sets Stage for Ecosystem Expansion

Eva Moore

Palm Foundation Partners with Polygon and Consensys to Expand NFT Ecosystem

Robert Paul

LimeWire Resurrected as NFT Marketplace and AI Creative Studio on Polygon

Cheryl  Lee

This website uses cookies to improve your experience. We'll assume you're ok with this, but you can opt-out if you wish. Accept Read More

Please enter CoinGecko Free Api Key to get this plugin works.