NFT Marketplace OpenSea hit by data breach

Updated: Jul 1

After revealing a data breach via its email vendor, leading NFT marketplace OpenSea has cautioned clients of potential phishing attempts.



The largest non-fungible token (NFT) marketplace by trading volume, OpenSea, has experienced a data breach as a result of a Customer.io employee who disclosed user information. Customer.io is the platform's email delivery partner.



An employee of Customer.io "misused their employee access to download and distribute email addresses - provided by OpenSea users and subscribers to our newsletter - with an unauthorized external party," the marketplace claimed in a blog post on Thursday.


All clients who have previously given the platform access to their email accounts should presume they have been affected by the incident, according to OpenSea. This might lead to "a heightened possibility for email phishing efforts seeking to imitate OpenSea," the company added.


Using emails from names that resemble OpenSea.io, such as OpenSea.org and OpenSea.xyz, unscrupulous actors may attempt to contact clients, according to OpenSea.


Some clients used Twitter to post screenshots proving that OpenSea had emailed them to alert them of the issue.

The Latest News