Cryptocurrency platform OpenSea’s user database stolen

OpenSea, a trading platform for the sale of non-fungible tokens, has reported the theft of users' personal data — all through the platform’s email partner Customer.io.

According to OpenSea representatives on the company’s official website, an employee of Customer. io (a service for creating and sending automated emails, SMS, and notifications) illegally used his own access to users' email addresses. The attacker downloaded all email addresses to his database and transferred them to a third party.

«If you have previously shared your email with OpenSea, we assume that you have been affected by the data breach. We are already investigating the matter together with Customer. io and have reported the incident to law enforcement,» OpenSea said on its official website.

The platform emphasized that attackers could launch a phishing attack by sending users emails purporting to be from OpenSea. To warn users and help keep their funds safe, the company has published examples of phishing emails, which we publish below.

The OpenSea platform also published tips on how not to fall for fraudsters. It is worth noting that the number of hacker attacks has increased significantly this year — attackers managed to earn more than a billion dollars in just 6 months. Each time, hackers use new methods of stealing money, for example, using fake programs that imitate MetaMask and Coinbase Wallet to steal passphrases and intercept transactions. Cryptocurrency fraudsters have also become more active on social media, particularly LinkedIn, where they convince victims to invest in phishing resources under their control.