Millions of users have been thrown into panic after an OpenSea email leak in mid-2022 went viral. According to SlowMist, over seven million email addresses compromised in 2022 have been fully published online, giving scammers a treasure chest of users’ information.
SlowMist’s chief information security officer, “23pds”, shared an X post about the OpenSea email service provider attack. Moreover, the unauthorized access to the platform’s email system resulted in the leaking of email addresses in 2022.
Additionally, 23pds explained that while the cyber attack occurred in mid-2022, the data had not been made public until recently.
“The leaked email addresses have now been fully publicized after multiple disseminations. Please be aware of the risks associated with phishing emails and other potential cyberattacks!” the CISO said in his post.
Details of the OpenSea Leak
About 7 million user’s data was leaked. This includes email information of overseas cryptocurrency practitioners, organizations, companies, and key opinion leaders in the industry. OpenSea is known as one of the world’s largest non-fungible token (NFT) marketplaces in the world.
They first warned users about the leak in June 2022. OpenSea discovered that an employee of its email automation platform, Customer.io, leaked the list of customer emails to a third party. However, in a later statement at the time, the marketplace assured users that they were working with the email automation company. Law enforcement to ensure the safety of user information was involved as well.
As a result, SlowMist’s chief information security officer, 23pds, has advised those who think their emails were leaked to create unique passwords and use a password manager to ensure extra security. The CISO also advised using two-factor authentication (2FA), recommending an authentication app over the more common SMS-based model.
Interestingly, these warnings are well-founded, considering the rise in phishing attacks by crypto wallet drainers, which caused about $500 million in losses in 2024. According to a Scam Sniffer report, this marked an increase of about 67% from the incidents in 2023, which affected over 300,000 wallet addresses.
READ MORE: Bitcoin Mining Difficulty Hits New High Amid Cutthroat Miner Competition
