Magic Eden to refund users after 25 fake NFTs sold due to exploit

Published at: Jan. 5, 2023

Nonfungible token (NFT) marketplace Magic Eden has pledged to refund all users who were duped into purchasing fake NFTs on its website as a result of an exploit.

In a Jan. 4 statement, the company said a bug in its newly deployed "activity indexer" for its Snappy Marketplace and Pro Trade tools essentially allowed fake NFTs to skirt verification and get listed alongside genuine NFT collections. 

Magic Eden said the exploit led to 25 fraudulent NFTs sold across four collections in the last 24 hours but is currently confirming whether additional NFTs were affected beyond the last day.

Two of the affected projects were the high-priced and popular Solana-based collections ABC and y00ts.

Do not buy these @y00tsNFT on @MagicEden, they are fake! Basically, every single collection is fake on Magiceden, a massive exploit is happening ongoing.High-value NFTs are suffering the most, as attackers choose to exploit higher-value NFTs first. pic.twitter.com/35RYHOKVxd

— HGE.SOL ‍♂️ (@HGESOL) January 4, 2023

The NFT platform said it has rectified the issue by temporarily disabling both tools and eliminating the “entry points” that allowed unverified NFTs to get through.

It also asked users to perform a “hard refresh” to ensure the unverified listings no longer show up on their browser session and shut down the purchase of unverified NFTs as a precaution.

“Magic Eden is safe for trading and we will refund all the users who mistakenly bought unverified NFTs specifically due to this issue,” it wrote.

Earlier today, unverified NFTs were being shown as part of verified collections on ME. In the last day, impact was contained to 25 unverified NFTs sold in 4 collections.We've resolved the issue and will refund those affected. Now, no one can buy unverified NFTs on ME.

— Magic Eden (@MagicEden) January 4, 2023

Magic Eden first raised the alarm over the fraudulent NFTs in a Twitter post on Jan. 4, citing community reports that people were able to buy fake ABC NFTs. At the time, it said it added “verification layers” in an attempt to resolve the issue.

After the announcement, Twitter users continued to sound the alarm on fake y00ts NFTs pervading the platform. A screenshot from ABC creator “HGE” showed at least two sales worth 100 Solana (SOL) each, a total amount of around $2,600.

DeGods, the creator of y00ts, also tweeted to its followers that there was an exploit on Magic Eden that allowed unverified NFTs to be listed as part of the collection.

There is currently an exploit on Magic Eden allowing for unverified NFT’s to be listed as part of the collection You can verify if an NFT is part of the collection on our explore page linked belowIf it’s not in our explorer, it’s not our NFThttps://t.co/c4HKIJJD1n

— DeGods III (@DeGodsNFT) January 4, 2023

The latest exploit is now the second incident that users of Magic Eden has had to go through this week.

On Jan. 3, the marketplace was littered with pornographic images and images from the television series The Big Bang Theory.

Related: ​​NFT influencer falls victim to cyberattack, loses $300K+ CryptoPunks

Magic Eden said a third-party image hosting provider was “compromised” leading to the “unsavory images” and assured users their NFTs were safe.

Cointelegraph contacted Magic Eden for comment but did not immediately receive a response.

Tags
Nft
Related Posts
Industry exec explains why NFT fraud protection falls on brand and not marketplaces
Nonfungible token (NFT) marketplaces should commit to combat fraudulent NFTs, but brands are far more responsible for protecting NFT investors, according to one industry executive. Brands that issue NFTs should be taking the first step to protecting themselves and potential investors from fraud, BrandShield CEO Yoav Keren said in an interview with Cointelegraph on Oct. 12. According to Keren, it’s more straightforward for a brand to recognize NFTs that were not released by the company itself rather than marketplaces like OpenSea or Rarible. NFT marketplaces usually have fewer insights into which brands are creating NFTs when they are launching and …
Nft / Oct. 14, 2022
Nifty News: Christie’s NFT expert to lead CryptoPunks, fake heiress launches NFT collection
Noah Davis, the nonfungible token (NFT) specialist at auction house Christie’s, has said he’s leaving the position in July to take up a post as brand lead for the CryptoPunks NFT collection with Yuga Labs. Announcing the move on Sunday in a Twitter thread, Davis looked to quash any anxieties holders had regarding the future of one of the oldest NFT projects, saying he “will not f*ck with the punks.” What does that mean? It means no Punks on lunchboxes or cringe TV shows/shitty movies. It means no arbitrary rushed utility or thoughtless airdrops. It means if you love your …
Nft / June 20, 2022
Beeple's Discord URL 'hijacked,' directing users to wallet drainer
Non fungible token (NFT) artist Mike "Beeple" Winkelmann has found himself the target of phishing scammers yet again, warning users that the URL link to his official Discord server was “hacked” — sending unaware new members to a wallet draining Discord channel if they follow the link. In an Oct. 3 post UTC, the NFT artist called out Discord for “being garbage,” warning users not to go into the Discord and verify as it will “drain your wallet.” it appears our discord URLs were hacked to point to a fraudulent discord. DO NOT go into that discord and do not …
Artists / Oct. 4, 2022
Nifty News: Royalty-enforcing NFTs a 'new asset class,' South Korea buys NFTs with CBDC, and more
Royalty enforcing NFTs to be a ‘new asset class’: Magic Eden CEO Jack Lu, the CEO of Solana-based nonfungible token (NFT) marketplace Magic Eden has floated the idea of NFTs designed to enforce royalties. Lu said in an address at Solana’s Breakpoint 2022 conference on Nov. 5 that these NFTs could “give rise to a new asset class” as the space grapples with the debate around opt-in royalties. He added that “creators need a sustained revenue model” and while royalties were one of those models there is “no way” to enforce them with the “current design” but added there are …
Nft / Nov. 8, 2022
Magic Eden follows OpenSea with NFT royalty enforcement tool
Magic Eden, a Solana-based nonfungible token (NFT) marketplace, has become the latest platform to release a tool allowing creators to enforce royalties on their collections. It follows the announcement of a similar tool from rival NFT marketplace OpenSea in early November. According to a Dec. 1 statement, the open-source royalty enforcement tool is built on top of Solana's SPL token standard and is called the Open Creator Protocol (OCP). This will allow royalty enforcement for new collections that opt-in to the standard starting Dec. 2. Lu previously floated the idea of NFTs designed to enforce royalties at Solana’s Breakpoint 2022 …
Nft / Dec. 2, 2022