OpenSea users targeted by phishing attack, $1.7 million in NFTs stolen.
If you’ve ever wanted to get into the NFT market, whether to buy or sell them, chances are you’ve at least heard of OpenSea, if not already tried.
It is one of the biggest and most popular platforms for doing this. Unfortunately, it turns out that the latter was the target of a phishing attack which resulted in the theft of numerous NFTs, up to approximately 1.7 million dollars.
OpenSea users targeted by a phishing attack
Let’s specify beforehand: the OpenSea platform itself has not been hacked. Its users were targeted by a phishing attack. This attack was conveyed to users of the platform via an email thought and designed to look like a communication from the OpenSea community.
In the email in question, users were urged to migrate their Ethereum assets to a new smart contract and since OpenSea had announced its own smart contract just the day before, this email seemed right on point.
$1.7 million in stolen NFTs
According to multiple reports, 32 OpenSea users were affected by this email and signed the contract which contained malicious code to sign the NFTs to the attacker.
32 users, that doesn’t seem like a lot, but given the crazy sums that NFTs in fiduciary money can reach, it is quite easy to understand that the total of NFTs stolen in this way reaches 1.7 million dollars.
The good news is that some of the stolen NFTs have been returned to their rightful owners. Others, on the other hand, were sold by the hacker. OpenSea is currently conducting an internal investigation into this incident to determine how this all happened.