2 days ago
23pds, the pseudonymous Chief Information Security Officer (CISO) astatine blockchain information steadfast SlowMist, has raised concerns astir imaginable phishing attacks targeting much than 7 cardinal OpenSea users whose emails were leaked successful a June 2022 breach.
23pds stated:
“Remember the onslaught connected the OpenSea message work supplier successful 202[2] that led to the leakage of emails? The leaked email addresses person present been afloat publicized aft aggregate dissemination.”
According to 23pds, the exposed information includes the email addresses of high-profile figures successful the crypto industry, specified arsenic salient companies, influencers, and cardinal sentiment leaders (KOLs).
They noted that this poses important risks to privateness and plus information successful the crypto sector. A screenshot shared by the CISO adjacent revealed that Binance’s erstwhile CEO Changpeng Zhao’s email code was among the compromised data.
The information breach traces backmost to 2022, erstwhile an worker of OpenSea’s email vendor, Customer.io, improperly accessed and shared idiosyncratic email addresses with an unauthorized party.
At the time, OpenSea assured users that lone those who subscribed to emails oregon newsletters were affected and urged caution against phishing attempts.
Phishing threats
23pds noted that the nationalist vulnerability of these emails amplifies concerns astir phishing attacks. They added:
“Please beryllium alert of the risks associated with phishing emails and different imaginable cyberattacks.”
To safeguard against imaginable attacks, blockchain information steadfast SlowMist advised affected users to follow robust information practices. These see utilizing strong, unsocial passwords, storing them successful password managers, and enabling two-factor authentication (2FA) with authenticator apps alternatively of SMS.
SlowMist stated:
“We besides urge that users usage two-factor authentication (2FA) whenever possible, recommending an authenticator app implicit SMS-based 2FA, and said to support instrumentality bundle updated.”
These warnings are unsurprising, considering a Scam Sniffer report highlighted that phishing attacks by crypto wallet drainers caused an estimated $500 cardinal successful losses successful 2024. This marked a 67% summation from the full incidents successful 2023 and affected implicit 330,000 addresses.
The station Crypto manufacture alarmed arsenic 7 cardinal OpenSea email users’ leak resurfaces appeared archetypal connected CryptoSlate.
English (US) 