Security and data analytics company PeckShield said today that OpenSea seems to be experiencing “a front-end issue,” while the exploiter got some ETH 332 (754,885).
At the time of writing (11:18 UTC), the shared address, per Etherscan, holds ETH 347 (USD 788,991). It shows 8 transactions, all completed within four hours.
The frontend refers to all the aspects of a software, website, platforms etc, with which the user interacts. An attacker may seek to identify attack vectors there, looking for subsystems with vulnerabilities.
Meanwhile, commenters are disagreeing on what may stand behind these transactions, with some also offering options such as “fatfinger seller”, or users not properly canceling their offers.
Some reports, posted about an hour earlier than PeckShield’s, claimed that an exploit is allowing the attacker to buy NFTs for old listing prices, possibly below the price floor.
Cryptonews.com has contacted OpenSea for comment.
Meanwhile, two days ago, OpenSea announced a new feature that alerts users if they’ve set up a listing “far below” the floor price (the lowest price for collection items).