What is the recent security breach at OpenSea?

OpenSea, a prominent American NFT marketplace, detected a significant security breach involving a third-party vendor that potentially exposed users' API keys, prompting urgent action to replace keys by October 2, 2023, ensuring security and functionality.

What action did OpenSea advise its users to take?

OpenSea advised users to discontinue using their current API keys and generate new ones, assuring that the new keys would maintain the same permissions and rate limits as the expiring ones.

When is the deadline for replacing API keys?

The deadline for replacing API keys is set for October 2, 2023.

What potential impact does the breach have on users?

While OpenSea assured users that the breach is not expected to immediately disrupt their platform integration, unauthorized third-party access could affect rate and usage limits.

Incident

OpenSea reports third party data breach

Q: Was the number of affected users disclosed?

OpenSea did not disclose the number of affected users or specify if additional data beyond API keys may be compromised.

Q: Has there been a similar security breach involving another platform?

Yes, a similar security breach involving Nansen, a blockchain analytics platform, and its third-party vendor, has also been reported.

published: Sept. 24, 2023

Take action: If you are using OpenSea API keys, reset them immediately.

Learn More

OpenSea, the American NFT (non-fungible token) marketplace, notified its users of a critical security breach involving a third-party vendor. The company discovered that this breach potentially exposed users' OpenSea API keys.

OpenSea urged immediate action, advising them to discontinue the use of their existing API keys and generate new ones. These new keys will maintain the same permissions and rate limits as the expiring ones. The deadline for this key replacement process is set for October 2, 2023.

Despite assuring users that the breach is not expected to cause an immediate disruption to their platform integration, OpenSea cautioned that unauthorized third-party access could affect rate and usage limits.

The company did not disclose the number of affected users or specify if additional data beyond API keys may be compromised.

This security incident follows a similar breach involving Nansen, a blockchain analytics platform, and its third-party vendor.

Read More
Fintech Giant Finastra reports data breach
M&T Bank reports Data Breach
Indian fintech C-Edge hit by ransomware, disrupts 300 …
New American Funding reports third party data breach …
DeFi lending platform Raft stops minting after security …