OpenSea Reports Email Data Breach

An employee at an outside contractor tasked with managing OpenSea email newsletters copied the list of customer emails and shared it with an outside party, OpenSea says.

AccessTimeIconJun 30, 2022 at 4:41 a.m. UTC
Updated Jun 30, 2022 at 2:56 p.m. UTC

Watch out for phishing emails, says OpenSea, after staff at the world’s largest non-fungible token (NFT) marketplace discovered that an employee of Customer.io, a platform for managing email newsletters and campaigns, leaked the list of OpenSea customers’ emails to an outside party.

  • Email newsletter management platforms and Customer Relationship Management (CRM) software appear to be a weak spot for crypto firms as leaks of this data continue to happen at a high frequency.
  • In March, Hubspot, a platform similar to Customer.io, was hacked, affecting BlockFi, Swan Bitcoin, NYDIG and Circle.
  • Users of these platforms had their names, phone numbers and email addresses leaked to an outside party.
  • OpenSea said malicious actors may try to contact OpenSea customers via emails from domains that look similar to OpenSea.io such as OpenSea.org or OpenSea.xyz
  • On Twitter, OpenSea customers are complaining of an uptick in spam emails, calls and text messages.

Read more about

DISCLOSURE

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

The leader in news and information on cryptocurrency, digital assets and the future of money, CoinDesk is a media outlet that strives for the highest journalistic standards and abides by a strict set of editorial policies. CoinDesk is an independent operating subsidiary of Digital Currency Group, which invests in cryptocurrencies and blockchain startups. As part of their compensation, certain CoinDesk employees, including editorial employees, may receive exposure to DCG equity in the form of stock appreciation rights, which vest over a multi-year period. CoinDesk journalists are not allowed to purchase stock outright in DCG.