A series of events starting in June 2022 led to the leak of over seven million email addresses, exposing OpenSea users to phishing attacks and other threats.
The OpenSea Breach Timeline
In June 2022, an employee of Customer(.)io, an email automation provider, exploited their access to extract and share OpenSea users' email addresses with a third party. This incident affected not only platform users but also prominent figures in the cryptocurrency sector.
Public Access to Data
Cybersecurity expert 23pds confirmed that the email addresses are now publicly accessible. This increases the risk of users becoming targets for phishing scams and other malicious activities. The leak makes it easier for scammers to send fake emails aimed at stealing passwords, digital assets, or personal information.
Recommendations for Users
SlowMist experts advise users affected by the breach to take precautions. It is crucial to create strong, unique passwords, use password managers for secure storage, and enable two-factor authentication (2FA), preferably using authenticator apps.
This data breach emphasizes the need for enhanced security measures to protect cryptocurrency platform users from phishing attacks and other threats.
