OpenSea Fixes Vulnerability, But Users Are Still Losing NFTs To Hackers
The OpenSea vulnerability which analysts first got wind of a few days ago appears to have not been fixed. According to new data, OpenSea users are still losing their pieces to hackers. Another eight NFTs have been exploited and sold without the owner’s consent for a huge profit by hackers.
OpenSea exploit continues
Hackers have been exploiting a major bug that allows them to list and sell rare NFTs on OpenSea at below their market value. According to blockchain analytics firm, Elliptic, the vulnerability is originating from the ability to relist an NFT at a new price, without canceling the original listing. The hackers exploited the bug by buying the NFTs at prices for which they were listed in the past.
Multiple users of OpenSea have fallen victim to the attack, and it appears to have not been fixed. Data from the NFT analytics platform, NFTGo.io shows that eight more popular NFTs have been listed and sold with this method. The NFTs involved include Cool Cat #9575, #7218, #3537, #1546, and BAYC #6623, #1397, #775, #2068. OpenSea also appears to have blocked the hackers’ address according to the report. Nonetheless, the hacker has made a profit of close to 150ETH (over $360,000) by selling the loot on LooksRare.
OpenSea has confirmed that the bug indeed exists but has explained that it fell to users to protect themselves against getting exploited. Announcing that they launched a new listing manager, they advised listers to cancel old listings. Meanwhile, total losses to users have now surpassed 347 ETH ($788,991) from PeckShield’s estimate.
What's going on:
Listings made a long time ago are resurfacing when items transfer back into lister’s wallets.What we did:
We can't cancel these orders for listers, so to fix the problem, we launched a new listings manager today.https://t.co/jy2sUhaBUA pic.twitter.com/6b8lHmkEYN— OpenSea (@opensea) January 24, 2022
Hacks are still one of the biggest threats in crypto
Hacks have continued to be endemic in the cryptocurrency space. A Chainalysis report estimated that in 2021, scammers stole over around $14 billion mostly due to DeFi hacks. The new year has already seen Crypto.com fall victim to a $30 million hack.
However, the industry is collectively working to bring more security through the education of users. This has been noted to be paying off. As pointed out by the Chainalysis report, crime has been reduced significantly in the industry and now forms only a small part of transactions that blockchains are handling.
- US President Promises Deal With China on Everything As ‘Trump Insider’ Begins To Close Bitcoin Shorts- Is A BTC Recovery Ahead?
- Just-In: Changpeng “CZ” Zhao Counters Peter Schiff, Says “Tokenizing Gold Is Not On-Chain Gold”
- $240 Million Hacked Crypto Exchange WazirX Reopens Deposits But Faces Community Backlash
- Expert Flags Pi Network Team as Source of Selling Pressure After Reported 1.2M PI Dump
- Ripple’s Chris Larsen Expands XRP Realized Profit to $764M Amid Evernorth Deal
- XRP Price Classical Pattern Points to a Rebound as XRPR ETF Hits $100M Milestone
- Chainlink Price Eyes $27 Rebound as Whales Accumulate 54M LINK
- Pi Network Price Wedge Signals a Rebound as Key Upgrades Raise Utility Hopes
- Solana Price Eyes $240 Recovery as Gemini Launches SOL-Reward Credit Card
- XRP Price Prediction Amid Evernorth’s $1B XRP Treasury Plan – Can XRP Hit $5?
- Ethereum Price Targets $8K Amid John Bollinger’s ‘W’ Bottom Signal and VanEck Staked ETF Filing
Why Trust CoinGape
CoinGape has covered the cryptocurrency industry since 2017, aiming to provide informative insights Read more…to our readers. Our journal analysts bring years of experience in market analysis and blockchain technology to ensure factual accuracy and balanced reporting. By following our Editorial Policy, our writers verify every source, fact-check each story, rely on reputable sources, and attribute quotes and media correctly. We also follow a rigorous Review Methodology when evaluating exchanges and tools. From emerging blockchain projects and coin launches to industry events and technical developments, we cover all facets of the digital asset space with unwavering commitment to timely, relevant information.
