OpenSea: Users Should Rotate API Keys Following Security Breach

It has been revealed that OpenSea notes the fact that users should rotate the API keys following the latest security breach. Check out the latest reports about the matter below.

OpenSea, a marketplace for NFTs, has informed some of its users that one of its third-party vendors recently experienced a security incident that may have exposed information about their API keys.

Although OpenSea does not anticipate any programs that use an OpenSea API key to be affected, external parties that use one of the exposed keys may experience changes in rate and usage limits.

In response to the incident, OpenSea plans to sunset existing keys by October 2nd. However, the company has not disclosed how many users were impacted by the breach or if any other information was compromised. The Block has reached out to OpenSea for comment but has not received a response at this time.

It has come to light that a hacker stole a considerable amount of customer information from Nansen, a crypto data firm, by exploiting one of the company’s third-party vendors.

Nansen confirmed the security breach on Friday on social media platform X, admitting that the vendor breach allowed the hacker to access admin rights to an account used for customer access on their platform.

Initial inquiries indicate that 6.8% of users had their personal information compromised. Nansen has notified affected users via email, providing information on the scope of the security breach. The email addresses of all impacted users were exposed, while a smaller number had their password hashes and an even smaller group had their blockchain address exposed.

According to Nansen, a data firm in the crypto industry, a third-party vendor they use, who is an established company, has experienced a breach. It is uncertain at this time which company is responsible for the breach.