Have you received a suspicious email that appears to be from OpenSea, asking you to send funds or connect your wallet? Have you received a DM on social media asking you to send a message to resolve a transaction failure or buyer error? These may be phishing attempts.
Phishing emails and DMs attempt to obtain personal information to gain access to your wallet. They often:
- Look real
- Prompt you to take quick action to solve a problem (such as a “buyer error”)
- Route you to a website that directly prompts you to sign a transaction in your wallet
OpenSea will ONLY send you emails from the domain opensea.io. If you’ve submitted a ticket through our Help Center, responses from our support team will come from firstname.lastname@example.org. Tickets created before September 5, 2023, will come from email@example.com. Emails from OpenSea have a verified blue checkmark in Gmail and a “Digitally Certified” mark in Apple Mail. We won’t DM you first on social media.
If you’ve received a phishing email that is impersonating OpenSea, you can report it directly to your email provider. For example, here are Google's directions on how to report phishing through Gmail.
If you’ve received a direct message on social media that is impersonating OpenSea, you can report it directly to the social media platform where you received it. Here is the link to Discord's Trust & Safety Center, and Instagram's.
If you’re not sure whether something is a phishing attempt, it’s best to be cautious. Learn more about protecting yourself and your NFTs in our guide, How can I stay safe and protect my NFTs?