NFT Sellers Are Stealing IP Addresses

thegamer.com:

The NFT community is already full of art theft and scams, and now we can add yet another controversy to the list. It now appears that simply viewing an NFT listing - even on third party auction sites - can cause your IP address to be stolen, as hackers exploit vulnerabilities in the practice.

NFT site MetaMask has acknowledged the issue, admitting that it had failed to address it. However, such listings are also available on OpenSea, and remain so at the time of writing.

Related: I Spent A Day In Decentraland's NFT Metaverse So You Don't Have To

This latest NFT development was spotted by the site Web3 is going just great, which highlights various issues with crypto at large. They highlight that other developers are now creating NFT listings with the purpose of stealing IP addresses just to show them back to the viewer, spreading awareness of this serious vulnerability in the market.

Using a VPN, Vice verified themselves, and found that the listing was indeed correctly listing their own IP address back to them.

If this is possible, it remains to be seen just what else these sellers can get hold of. With custom code being loaded as soon as someone simply views the listing, it's possible that these attacks could become much more insidious.

However, considering OpenSea is yet to take down NFTs involved in an apparent rug pulling scheme, it's unlikely that we'll see changes anytime soon. At the time of publication, the Minecraft inspired Blockverse project is still able to sell via the NFT site, despite the fact that its socials went dark after raking in a suspected $1.2 million. They are yet to provide any proof that they are working on the promised Minecraft NFT game, and it's likely to stay that way considering the Twitter