On Thursday (29), OpenSea , one of the world’s major non-fungible token (NFT) trading platforms, disclosed that it had experienced a data leak from its customers. In a statement, the corporation warns its clients to be on the lookout for email scams that may be targeting them.
Company officials said a Customer.io employee is to blame for an unauthorised access attack on their email service. Using the professional’s privileges, he or she would have downloaded and shared the email addresses of OpenSea users and newsletter subscribers.
Although the scope of the data breach is unknown, anyone who used the platform to register their email address is potentially at risk. You should presume that you’ve been affected if you’ve already provided your email with OpenSea, the startup said.
As part of an internal inquiry, the firm says it is working with Customer.io and that the employee implicated has had access withdrawn and suspended until the investigation is complete. Both the authorities and the affected customers have been made aware of the incident, and emails have been sent to both groups.
More from us: Email attachments won’t download – What to do
Phishing is a concern.
As a result of this, the business has issued an advisory warning clients to be on the lookout for bogus emails that appear to be from the company. “opensea.org” and “opensea.xyz” are instances of bogus addresses, while “opensea.io” is the actual one.
In addition to not revealing wallet passwords or passphrases and never signing a wallet transaction asked through messaging, users should avoid opening attachments and not clicking on suspicious links when receiving phishing emails impersonating the company. There are no attachments or download demands in official communications, according to the company.
Possibly only user-registered email addresses were exposed, according to OpenSea. An investigation is ongoing to determine whether or whether the platform’s other customers’ data was exposed, it said.