The largest Ethereum NFT marketplace cased a phishing attack on Saturday evening. Some users claimed losses of Cool Cats and Doodle collections.
CEO Devin Finzer said in a tweet, “As far as we can tell, this is a phishing attack. We don’t believe it’s mixed to the OpenSea website. It appears 32 users thus far have signed a malicious payload from an attacker, and some of their NFTs were stolen.” Some NFT owners were duped into transferring their NFTs into another wallet. Etherscan shows that a balance of 641 Ethereum (ETH) now exists in the trickster’s Ethereum wallet.
Finzer refuted claims that this hack amounted to $200M in lost NFTs. He treated those who want to protect themselves from this attack can “un-scarcelyify” access to their NFTs on OpenSea.
Finzer examined users to ensure that they are on opensea.io while signing messages.
Not a good few months for OpenSea
OpenSea recently requested customers to migcost their NFTs to a new smart contract on Fri., Feb. 20, 2021. This migration was meant to mitigate the user interface bug on OpenSea’s website that allowed NFTs to be listed at a fraction of their current rate and then sold at a profit by at least three perpetrators.
OpenSea’s recent user interface issue achieved $1.8M in NFTs to be lost, that OpenSea reimbursed. Users who had transferred their NFTs to new wallets without canceling their old listings saw their NFTs sold for the cost of the old listings. OpenSea claimed which the occurrence was “not an exploit or a bug” but rather an issue which arises because of the nature of the blockchain. On Friday, Feb. 25, 2021, all listings likewise on old smart contracts will expire. With the condition that the migration deadline is missed, one can likewise relist without incurring gas fees. Before which, users are guided via an instructional video on migrating their listings.
CEO reassures OpenSea users
Finzer said on Twitter which the following were not vectors for the attack: using the new migration tool, minting, buying, selling, or listing NFTs using opensea.io, interaction with an OpenSea email, and clicking on the site banner. Finzer said which OpenSea is working with users whose items were stolen to narrow down a set of common websites which they visited which could have been responsible for the malicious signatures. He reassured users, “We have confidence this is not a phishing attack.” OpenSea’s Twitter says, “We are in placely investigating rumors of an exploit associated with OpenSea related smart contracts. This appears to be a phishing attack executing outside of OpenSea’s website. Do not click links outside of opensea.io.”
What do you think about this subject? Write to us and tell us!
The post OpenSea CEO Reassures Users After Phishing Attack appeared first on CryptCraze.