A hacker has used recent Opensea contract migration situation to their advantage, actively stealing and flipping high-valued NFTs from users on OpenSea, the world’s largest NFT exchange, causing chaos and confusion in the broader NFT community.
The modus operandi for the hack is currently unknown, but OpenSea placed a red banner at the top of its site Saturday night saying “We are actively investigating rumors of an exploit associated with OpenSea related smart contracts. This appears to be a phishing attack originating outside of OpenSea’s website. Do not click links outside of opensea.io.”
“This should be an eye opener to how important it is that we have a wide selection of NFT platforms and always be cautious of what we sign, even with a platform we trust and use regularly” an NFT collector of NYN Club said.
OpenSea is currently mandating users who list NFTs on the site to upgrade to a new smart contract that fixes an issue with inactive listings that was allowing scammers to swipe valuable NFTs from collectors on OpenSea for dirt cheap; some high profile NFT users are speculating now that a malicious actor is phishing people with a fake page designed to look like the one used to upgrade to that contract.
Blockchain records show that the attacker was able to transfer numerous NFTs from different users to their address for free. Stolen NFTs included examples from the Bored Ape Yacht Club, Mutant Ape Yacht Club, and several other popular collections. The attacker has already sold some of the NFTs, for example, this NFT from the Azuki collection for 13.4 ETH ($36,380). The attacker’s wallet currently contains more than 600 ETH worth nearly $2 million.
Discover more from DiutoCoinNews
Subscribe to get the latest posts sent to your email.
