Users of OpenSea have to be very vigilant these days as scammers have intensified attacks on nonfungible tokens (NFTs). NFTs have become more popular, and hence bad actors constantly try to exploit users within the space. Now, a new hack involving a feature on the NFT marketplace OpenSea threatens NFT holders through phishing sites.
In an announcement, anti-theft project Harpie warned NFT users of a new hack involving gasless sales on the OpenSea platform. According to Harpie, hackers were able to steal millions in digital assets by exploiting the feature.
When users want to conduct gasless sales within the OpenSea platform, they are required to approve a signature request with an unreadable message. With this feature, users are allowed to create private auctions with unreadable signatures.
Because of this, phishing websites have been using this feature to ask their victims to sign one of these unreadable messages. According to Harpie, the signatures often pose as a step required to log in and access the website.
However, the login messages are actually signature requests to conduct a private sale of the victim’s NFTs to the scammer for 0 Ether. If signed, it will send the NFTs to the hacker’s wallet address.
(Reporting by Laxmikant Khanvilkar)
You need to login in order to Like
