OpenSea, the popular NFT marketplace that hit a huge $13 billion valuation in January, is warning users of email phish after a data hack.

A staff at, an email vendor contracted by OpenSea, used their employee access to download and share email addresses of OpenSea's users and newsletter subscribers with an unauthorized outside party.

It appears that the security breach is large. If you have shared your email with OpenSea in the past, you should assume you were impacted, as the company has reported the incident to law enforcement.

According to data collected by Dune Analytics, more than 1.8 million users have made at least one purchase through the Open Sea network.

We contacted Open Sea for more information.

As the industry sees huge growth and money pouring in, it has become a target for cyberattack. The average user leans towards centralized services like Open Sea for their convenience, despite the promise of a better security with the use of decentralization.

In March, a data breach at HubSpot, a customer relations management software firm, led to data breeches at several other companies. The announcement bot of the NFT platform was hacked in December to make money.

One of the biggest heists in the world was the $625 million theft from the Ronin network.

Growing at a rapid pace, these platforms are subject to the same security risks as the established web services that use centralized cloud services.

Making sense of OpenSea at a $13B valuation