OpenSea, a popular NFT trading platform, warns users about their email address data being leaked, which could lead to phishing attacks against them.
It is noted that employees of Customer.io (the contractor hired by OpenSea to handle email) have been misusing service access. They downloaded the email addresses of OpenSea users and newsletter subscribers and then shared that data with an unauthorized outside party. At the same time, the leak is likely to affect all users of the platform.
“If you have shared your email with OpenSea in the past, you must assume that you have been harmed,” OpenSea said.
According to Dune Analytics, more than 1.8 million users have made at least one purchase through the Ethereum network on OpenSea.
OpenSea added that it is working with Customer.io as part of an ongoing investigation and has reported the incident to law enforcement.
Source: techcrunch