Open Sea suffers email data breach

Open Sea, the world's largest NFT marketplace, suffered an email data breach that would affect the majority of its customers.

An employee of Customer.io, an email vendor contracted by OpenSea, has allegedly misused their access to download and share email addresses with an unauthorized external party. The data breach could lead to email phishing attempts, warning users to beware of any emails that don't come from OpenSea's official domain.

The incident has been reported to law enforcement, and Customer.io has already launched an investigation into the matter. Users have started reporting an increase in phishing emails from fake OpenSea domains.

This isn't the first time OpenSea users have been targeted by phishing scams. In February of this year, close to $2 million worth of NFTs were stolen in an elaborate phishing attack that affected 32 users. The platform lost a third of its trading volume and a fifth of its users because of the attack, leading to a drop in activities on OpenSea.

BlockFi, Circle, Swan Bitcoin, Pantera Capital, and NYDIG all reported that a portion of its users' information was leaked to hackers. Users reported a significant increase in phishing emails, even though the companies said none of its operations or treasuries were affected.