warn! Rumor has it that vulnerabilities in Opensea’s new contracts lead to massive NFT theft.

Expensive NFT owners are being attacked by unknown attackers. Removed assets listed in Opensea. It is not yet known whether the problem was caused by a hacked new Opensea contract or a phishing attack.

Opensea said: “We are investigating rumors of attacks involving OpenSea smart contracts. They appear to be phishing attacks occurring outside of OpenSea’s website, so please do not click on any external links other than those from OpenSea. http://opensea.io

at the time of writing this It is unclear whether assets were stolen through a vulnerability caused by a flaw in the OpenSea platform or through a phishing attack. This is a common method for accessing accounts via fake emails.

But at this point we can confirm thathackerIt has approximately $3 million in assets, including popular NFTs such as Bored Apes, Azuki, and CloneX.

What you should do is Revoke (https://revoke.cash/) All approvals from OpenSea if any interactions have been made in the past few months.

Nasen CEO Alex Svanevik estimates that approximately 19 OpenSea users were affected, with 680+ ETH stolen, excluding NFTs Bored Apes, Mutant Apes, Azukis, mfers, FVCK_CRYSTALS, Doodles and others (https://etherscan.io/address/0x3e0defb880cd8e163bad68abe66437f99a7a8a74#tokentxnsErc721)

An example of a phishing email

Phishing or bug in smart contracts ?

Interestingly, the contracts were created 28 days ago and about 5 hours ago. The first transaction took place to initiate the theft of a large number of wallets.

Another user explained that He has never interacted with phishing emails from Opensea.

refer : LINK

The post Alert! Rumors of a vulnerability in Opensea’s new contracts have led to massive NFT thefts appearing first on Bitcoin Addict.

source site