Fake OpenSea support steals NFTs and cryptocurrency wallet contents

Tomcat

Tomcat

Professional
Messages
2,687
Reaction score
1,036
Points
113
341fe796a81d7fd857c01.png


Users of the OpenSea NFT marketplace are exposed to phishing attacks on Discord, the purpose of which is to steal cryptocurrency and NFT funds, says Bleeping Computer.

The attackers acted on the OpenSea Discord server impersonating official representatives of the site's support service. Fraudsters offered help to OpenSea users, which invariably resulted in the loss of cryptocurrency and NFTs stored in victims' MetaMask wallets.

The point is, if an OpenSea user needs support, they can request help from the OpenSea Help Center or through the site's Discord. When a user joined Discord and sent a request for help, the scammers began to send the victim private messages, inviting them to a supposedly dedicated "OpenSea Support" server (of course, a fictitious one).

The artist Jeff Nicholas, who was the victim of this scam, told reporters that on a fake support server, scammers asked him to provide remote screen access so that they could help and provide recommendations on how to fix the problem.

The victim was then informed that she needed to re-sync her MetaMask Chrome extension with the MetaMask mobile app. During this, a QR code is displayed on the user's screen, which he must scan, but scammers use it. After the appearance of the QR code, the user almost immediately sees a message that the application is synchronized, because the code was used by criminals

“Basically, they get your seed (without actually having one),” writes Nicholas.

When scammers scan a victim's QR code on their mobile app, they gain full access to the cryptocurrency and everything stored in the NFT wallet. Then the attackers simply transfer funds to their wallets.

OpenSea representatives say they are aware of these attacks and recommend that users contact support through the site's help center.

Some users disagree with this position of the company and believe that OpenSea is also to blame for what is happening, as it sent users to its Discord server for support and did not control what was happening there.
 
You must log in or register to reply here.

Similar threads

Professor
Carding 3.0: How Metaverses and Web3 Became the New Wild West for Digital Heists
Replies
0
Views
176
Professor
Professor
G
A Complete, Detailed, and Step-by-Step Guide to Creating and Selling NFTs
Replies
0
Views
291
Good Carder
G
Professor
The Evolution of Phishing Panels: From Home-Crafted Scripts to Cloud-Based SaaS Solutions with Tech Support
Replies
0
Views
121
Professor
Professor
Professor
Carding-as-a-Service (CaaS) 2.0: Market consolidation and the emergence of "shadow corporations" with guarantees and technical support
Replies
0
Views
156
Professor
Professor
Professor
Cryptocurrency and Carding: The Cash-Out Chain in the Blockchain Age (How New Technologies Are Changing the Laundering of Stolen Funds)
Replies
0
Views
101
Professor
Professor
Back
Top