OpenSea’s CEO clarified that yesterday’s phishing attack did not originate from the platform.
OpenSea, the world’s largest NFT (non-fungible token) marketplace, confirmed on Sunday that it was hit by a hacking hacking is the process of using a computer to manipulate another computer or computer system in an unauthorized fashion. attack. phishing when a scammer pretends to be a trusted institution or person to trick people into revealing sensitive information such as Social Security numbers, passwords, banking details, etc., often through a malware link disguised as legitimate. (fraudulent process of social engineering branch) and that at least 32 users had lost their NFTs non-fungible token, a unique non-interchangeable piece of digital content that is stored on a distributed ledger (blockchain). worth USD $1.7 million.
He said rumors that it was a $200 million hack are false, but he did acknowledge that the attacker did “ has $1.7 million in ETH (Ethereum) in his wallet a place where cryptocurrency users can store, send and receive digital assets. from selling some of the stolen NFTs.”
However, the co-founder and CEO of OpenSea, Devin Finzer, made it clear that the recent attack by phishing did not originate from the platform a place to buy, sell and store cryptocurrency . The team is investigating the matter to locate the source of the attack.
In a Twitter thread yesterday, Finzer discussed recent reports of the attack that originated in OpenSea and clarified that, in fact, it did not start in OpenSea .
This attack did not originate on https://t.co/TYuT1WACso.
– Devin Finzer (dfinzer.eth) (@dfinzer)February 20, 2022
In the thread Twitter he also said:
“Interaction with an OpenSea email is not an attack vector. In fact, we are not aware of any affected users receiving or clicking on links in suspicious emails.”
More on the attack
The CEO revealed more about the circumstances surrounding the attack. He pointed out several other methods that were not attack vectors, such as minting, buying and selling on the platform that generates the quote migration tool; or clicking on the site’s banner.
“Coining, buying, selling or listing the addition of an asset or an asset pair to an exchange. items using opensea.io is not an attack vector. In particular, signing the new smart contract in traditional finance, a contract is a binding agreement between two parties. In cryptocurrencies, smart contracts execute functions on the blockchain. (the Wyvern 2.3 contract) is not an attack vector.” , dijo and Twitter.
He also explained that the platform was working with the victims of the theft to narrow down the source of the attack that could have been responsible for the malicious signatures. The team’s investigation continues and it provided some updates on its Twitter page.
“We are actively working with the users whose items were stolen to narrow down a set of common websites they interacted with that may have been responsible for the malicious signatures. Many thanks to the users who contacted us directly by phone.” he said in the thread.
OpenSea he said, moreover, that the attacker is no longer active . The malicious contract has not seen any activity in the last 15 hours. OpenSea and their executives have urged users not to click on links outside of OpenSea.io.
It is worth remembering that the platform OpenSea se ha visto afectada por una serie de incidentes negativos en los últimos meses. Sin embargo, sigue siendo la plataforma NFT más popular, a pesar de estos incidentes. De hecho, en agosto del año pasado se decía que produjo USD $1 mil millones en operaciones comerciales solo ese mes.
Among the recent problems, is that last month OpenSea, reimbursed around of USD $1.8 million in funds ETH to users who were affected by an exploit which resulted in the sale of its NFT non-fungible tokens (NFTs) are cryptocurrencies that do not possess the property of fungibility. at a rate well below its market an area or arena, online or offline, in which commercial dealings are conducted. value. In addition, a mistake in September 2021 resulted in the destruction of 42 NFT worth USD $100 m il.
The platform has also had some security the term securities refers to a fungible and tradable financial instrument that carries a type of monetary value. issues. Perhaps the most serious of all was the theft of $1.3 million worth of NFT due to a bug. NFT has also been stolen fromBored ApeThis led the market to freeze transactions, which subsequently generated a lot of criticism from the crypto community.
It has also been heavily criticized for piracy in some of the works. Recently said the former Disney CEO.
Version of DiarioBitcoin
Imagen de Unsplash