2 years ago
“We are actively investigating rumors of an exploit associated with OpenSea related astute contracts,” OpenSea posted to Twitter Saturday nighttime U.S. hours. “This appears to beryllium a phishing onslaught originating extracurricular of OpenSea's website. Do not click links extracurricular of opensea.io.”
Around 10:50 p.m. ET, OpenSea CEO Devin Finzer followed up successful a tweet that “32 users frankincense acold person signed a malicious payload from an attacker, and immoderate of their NFTs were stolen.” He added that the institution is “not alert of immoderate caller phishing emails that person been sent to users,” and suggested a fraudulent website whitethorn beryllium to blame.
On Twitter, traders shared what they’d initially thought were authoritative OpenSea emails astir the migration process from declaration A to declaration B.
PeckShield, a blockchain information institution that audits astute contracts, stated that the rumored exploit was “most apt phishing” – a malicious declaration hidden successful a disguised link. The institution cited that aforesaid wide email astir the migration process arsenic 1 of the imaginable sources of the link.
The evident attacker’s address (which the blockchain explorer website Etherscan has already slapped with a “phish/hack” informing badge) holds astir $1.7 cardinal worthy of ether (ETH), arsenic good arsenic 3 tokens from the Bored Ape Yacht Club, 2 Cool Cats, 1 Doodle and 1 Azuki.
Update (Feb. 20, 04:42 UTC): Adds nationalist connection from OpenSea CEO.
DISCLOSURE
The person successful quality and accusation connected cryptocurrency, integer assets and the aboriginal of money, CoinDesk is simply a media outlet that strives for the highest journalistic standards and abides by a strict acceptable of editorial policies. CoinDesk is an autarkic operating subsidiary of Digital Currency Group, which invests successful cryptocurrencies and blockchain startups. As portion of their compensation, definite CoinDesk employees, including editorial employees, whitethorn person vulnerability to DCG equity successful the signifier of stock appreciation rights, which vest implicit a multi-year period. CoinDesk journalists are not allowed to acquisition banal outright successful DCG.
Will Gottsegen is CoinDesk's media and civilization reporter. He holds ETH and 2 NFTs supra CoinDesk's disclosure threshold of $1000.
Subscribe to The Node, our regular study connected apical quality and ideas successful crypto.
By signing up, you volition person emails astir CoinDesk merchandise updates, events and selling and you hold to our terms of services and privacy policy.
English (US) 