Critical Flaw in OpenSea Could Have Let Hackers Steal Cryptocurrency From Wallets


Source: HackerNews


A now-patched critical vulnerability in OpenSea, the world's largest non-fungible token (NFT) marketplace, could've been abused by malicious actors to drain cryptocurrency funds from a victim by sending a specially-crafted token, opening a new attack vector for exploitation.

The findings come from cybersecurity firm Check Point Research, which began an investigation into the platform following public reports of stolen cryptocurrency wallets triggered by free airdropped NFTs. The issues were fixed in less than one hour of responsible disclosure on September 26, 2021.

Automatic GitHub Backups
"Left unpatched, the vulnerabilities could allow hackers to hijack user accounts and steal entire cryptocurrency wallets by crafting malicious NFTs," Check Point researchers said.


Cont’d.

LINK:

https://thehackernews.com/2021/10/critical-flaw-in-opensea-could-have-let.html

Discusiones sobre el mismo tema

URL de retroenlace : https://www.ictal.org/index.php?trackback/2923

Fuente de los comentarios de esta entrada