OpenSea planned upgrade stalls as phishing attack targets NFT migration

OpenSea planned upgrade stalls as phishing attack targets NFT migration



Major nonfungible token (NFT) marketplace OpenSea has reportedly fallen victim to an ongoing phishing attack within hours after announcing a week-long planned upgrade to delist inactive NFTs on the platform. 

Just yesterday, OpenSea announced a smart contract upgrade, which requires users to migrate their listed NFTs from Ethereum (ETH) blockchain to a new smart contract. As a direct result of the upgrade, users that don’t migrate over from Ethereum risk losing their old, inactive listings — which currently require no gas fees for migration.

However, the urgency and short deadline opened up a small window of opportunity for hackers. Within hours after OpenSea’s upgrade announcement, reports across multiple sources emerged about an ongoing attack that targets the soon-to-be-delisted NFTs.

Further investigations revealed that attackers used phishing emails to steal the NFTs before they get migrated over OpenSea’s new smart contract. Once a user authorizes the NFT migration from the fraudulent email, the attackers gain access to the NFTs.

Tokenmetrics

Users are now advised to be wary of all communications from OpenSea in addition to revoking all permissions about the migration to the new smart contract.

OpenSea co-founder and CEO Devin Finzer acknowledged the phishing attack while confirming that 32 users have lost NFTs so far. While the NFT marketplace is yet to decipher the ongoing attack, blockchain investigator Peckshield suspects a possible leak of user information (including email ids) that fuels the ongoing phishing attack.

However, Finzer has asked affected users to reach out to the company as he concluded:

“If you are concerned and want to protect yourself, you can un-approve access to your NFT collection.”

Related: UK tax authority makes first NFT seizure in VAT fraud case

Her Majesty’s Revenue and Customs (HMRC), the chief tax authority in the United Kingdom, seized three NFTs associated with a suspected tax evasion fraud.

As Cointelegraph reported, the suspects used fake identities and created 250 fake “shell” companies to evade 1.4 million British pounds (roughly $1.8 million) in value-added taxes.





Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

Pin It on Pinterest

Freedom-Crypto
Ledger
Freedom-Crypto
OpenSea planned upgrade stalls as phishing attack targets NFT migration
Tokenmetrics
Bybit
Bitcoin consolidates below $120K; Analysts say Ethereum flows will guide next market move
Crypto ETPs Post $1.9B Of Inflows As Ether Tops Gains
Spot Ether ETFs Hit $453M in Inflows, Extend 16-Day Streak
Ethereum Price Analysis: Why is ETH Under-Performing This Year?
Societe Generale to support 21Shares Crypto ETPs: Growing Blockchain Ambitions?
World Liberty Financial acquires 3,473 ETH
bitcoin
ethereum
tether
binancecoin
usd-coin
solana
ripple
cardano
terra-luna
avalanche-2
Blockfi
Bybit
RI Mining Free Cloud Mining App Is Officially Launched
Galaxy Digital moves $447M in Bitcoin to exchanges, sparking sell-off speculation
Bitcoin consolidates below $120K; Analysts say Ethereum flows will guide next market move
Bitcoin Mining Giant Mara Completes $950M Deal to Buy More BTC
Spanish Police Dismantle $540 Million 'Crypto Investment Fraud Ring'
RI Mining Free Cloud Mining App Is Officially Launched
Galaxy Digital moves $447M in Bitcoin to exchanges, sparking sell-off speculation
Bitcoin consolidates below $120K; Analysts say Ethereum flows will guide next market move
Bitcoin Mining Giant Mara Completes $950M Deal to Buy More BTC
bitcoin
ethereum
tether
binancecoin
usd-coin
solana
ripple
cardano
terra-luna
avalanche-2
bitcoin
ethereum
tether
binancecoin
usd-coin
solana
ripple
cardano
terra-luna
avalanche-2