OpenSea pays $200 000 reward to two white hat hackers
According to one of the experts, if the error had not been detected, it could have potentially been used to steal assets
28.09.2022 - 13:25
581
2 min
0
What’s new? NFT marketplace OpenSea has paid a reward of $200 000 to two white hat hackers who discovered separate critical vulnerabilities in the last ten days. They each received $100 000. This was revealed in an interview with The Block by the ethical hackers themselves, security expert and marketing director of blockchain audit firm Zellic Corben Leo and an anonymous white hat hacker nicknamed Nix.
Information on The Block website
How did events develop? According to Leo, he was rewarded for identifying a critical vulnerability in OpenSea through the HackerOne platform. He noted that had the critical bug not been discovered, it could have potentially been exploited by attackers to steal assets. The vulnerability affected the marketplace's Web services and could have allowed the OpenSea infrastructure to be compromised.
An anonymous white hat hacker, Nix, also received a reward for reporting another critical vulnerability on September 19. He provided no other additional details, explaining that the vulnerability report and any details surrounding it are confidential.
An OpenSea spokesperson confirmed this information to The Block, noting that appropriate patches have been issued for the vulnerabilities. The company is satisfied that the HackerOne platform is working as planned.
In June, the Aurora Labs team received two reports that contained information about critical vulnerabilities. The company paid the authors of those reports $1 million each in AURORA tokens.
In May, the developers of the Wormhole cross-chain protocol paid $10 million to a white hat hacker for finding a critical vulnerability that could have been used by attackers to block all user assets.
Useful material?
Telegram 
Twitter Incidents
The company is linking the incident to a compromised private key on a service wallet, rather than a smart contract exploit
May 22, 2026
Incidents
Following the incident, the project temporarily halted trading operations and node activity.
May 15, 2026
Incidents
The user spent weeks unsuccessfully trying to guess the password until Claude helped find an old wallet backup file
May 14, 2026
Crypto regulations
Authorities are introducing mandatory registration for companies handling cross-border crypto transactions
May 8, 2026
Incidents
According to Blockaid, the attack may have been carried out by the same hacker behind the 1inch Fusion V1 exploit.
May 7, 2026
Incidents
The attacker gained administrative access and altered contracts to drain user funds
Apr 30, 2026
Cryptocurrency rates
-
Bitcoin
$63 326
BTC
-3.36%
-
Ethereum
$2 551.16
ETH
+3.56%
-
BNB Smart Chain
$579.4
BSC
+1.23%
-
Ripple
$1.16
XRP
-4.59%
-
TRON
$0.160134
TRX
-1.59%
-
Dogecoin
$0.087619
DOGE
-5.2%
-
Zcash
$486.65
ZEC
-22.18%
-
Stellar XLM
$0.201843
XLM
-5.74%
-
Cardano
$0.180932
ADA
-11.22%
-
Polkadot
$3.32
DOT
+5.27%