OpenSea is Reimbursing Users After Loophole Led to Steep NFT Losses

An OpenSea spokesperson told Blockworks the company has been “actively reaching and reimbursing affected users”

article-image

BORED APE YACHT CLUB NFTS OWNED BY APE DAO VIA ROLLINGSTONE

share

key takeaways

  • The company said it’s working on improvements to mitigate risk, such as a new dashboard for its marketplace
  • An OpenSea bug destroyed 42 NFTs last year

OpenSea is reimbursing users who had their non-fungible tokens snatched up and resold for far below market value on Monday.

An OpenSea spokesperson told Blockworks in a statement that the company has been “actively reaching and reimbursing affected users,” and is taking the matter “incredibly seriously.” The spokesperson did not immediately specify exactly how much users have been reimbursed.

The company said it’s been quiet on the issue to avoid notifying “bad actors who could abuse it at scale” before patching the problem. It’s working on product improvements, including a new dashboard that shows all active listings, to address the issue.

At least three opportunists exploited the OpenSea loophole Monday, making away with over $1 million worth of ether in ensuing NFT sales, according to blockchain analytics firm Elliptic. One user, who goes by “jpegdegenlove” online, paid roughly $133,000 for seven NFTs, before flipping the digital collectibles on OpenSea for $934,000 of ether.

“The exploit appears to originate from the ability to re-list an NFT at a new price, without canceling the previous listing,” Elliptic said in a report. “Those previous listings are now being used to purchase NFTs at prices specified at some point in the past — which is often well below current market prices.”

The loophole, according to the company, was not an exploit or a bug, but rather a UI issue that arises when a user creates a listing, then transfers the NFT to a different wallet — typically to avoid the gas fee that comes with nixing a listing. 

Additionally, the platform is changing the default listing duration for NFTs from six months to one month, so that if an NFT is transferred back into a wallet after the new time frame the listing will have expired. 

OpenSea reportedly had a bug in its marketplace that destroyed 42 NFTs last year, but was fixed within a day. 


Start your day with top crypto insights from David Canellis and Katherine Ross. Subscribe to the Empire newsletter.

Explore the growing intersection between crypto, macroeconomics, policy and finance with Ben Strack, Casey Wagner and Felix Jauvin. Subscribe to the On the Margin newsletter.

The Lightspeed newsletter is all things Solana, in your inbox, every day. Subscribe to daily Solana news from Jack Kubinec and Jeff Albus.

Tags

Upcoming Events

Salt Lake City, UT

MON - TUES, OCT. 7 - 8, 2024

Blockworks and Bankless in collaboration with buidlbox are excited to announce the second installment of the Permissionless Hackathon – taking place October 7-8 in Salt Lake City, Utah. We’ve partnered with buidlbox to bring together the brightest minds in crypto for […]

Salt Lake City, UT

WED - FRI, OCTOBER 9 - 11, 2024

Pack your bags, anon — we’re heading west! Join us in the beautiful Salt Lake City for the third installment of Permissionless. Come for the alpha, stay for the fresh air. Permissionless III promises unforgettable panels, killer networking opportunities, and mountains […]

recent research

Research Report Templates.png

Research

ZKPs enable efficient offchain transaction processing and validation, resulting in increased throughput and reduced fees. Solana's ZK Compression leverages ZKPs to minimize onchain storage costs, while Sui's zkLogin streamlines user onboarding by replacing complex key management with familiar OAuth credentials.

article-image

The crypto asset manager lowered its planned fee from 0.25% to 0.15%, undercutting its competitors

article-image

Plus, a look at planned ETH ETF fees and how they differ from their BTC counterparts

article-image

North Korea suspected in breach of Indian exchange’s multisig wallet

article-image

Plus, Sanctum’s CLOUD token has officially launched — but not without problems

article-image

It’s not yet clear whether Donald Trump is pumping bitcoin. But an unofficial memecoin is still seeing benefit.