The world’s largest NFT(non-fungible token) marketplace OpenSea declared on Sunday officially that the platform has been exposed to a phishing attack. The OpenSea also confirmed that at least 32 users have lost $1.7 million valuable NFTs. Devin Finzer, OpenSea’s Co-Founder and CEO acknowledged the phishing attack publically on Twitter.
However, he considers that the rumors of the $200 million hack were false and that the attacker has ” $1.7 million worth of ETH (Ethereum) in his wallet from selling some stolen NFTs”. He also believes that the malicious activity is not connected to OpenSea’s website.
Meanwhile, when OpenSea is yet to identify the nastiness of the cyberattack, the blockchain investigator Peckshield is suspecting a possible leak of user information like email IDs that led to the major hack. Moreover, on Twitter, the NFT marketplace assured the users about the ongoing investigation through a tweet stating,
“We are actively investigating rumors of an exploit associated with OpenSea related smart contracts. This appears to be a phishing attack originating outside of OpenSea’s website. Do not click links outside of opensea.io”OpenSea Twitter post
The hack occurred after users got an email through OpenSea announcing the up-gradation to a new smart contract where users are required to migrate their listings from ETH blockchain to a new smart contract. The users were given a one-week deadline to make the migration on the platform.
Within hours of this announcement, reports emerged through numerous mediums about an ongoing digital attack targeting valuable NFTs. The OpenSea CEO has requested the affected users to message him directly on Twitter for further investigation.