‘White Hat Hacker’ Won’t Disclose OpenSea Bug Details After Lowball Bounty Offer

Blockchain developer, Mr. Ø, has declined to reveal an OpenSea bug after the platform’s measly bounty supply. The Quantum Tech Challenge/Product Lead claimed yesterday that that they had discovered a “huge vulnerability” in OpenSea. Reportedly, OpenSea reached out to the ‘white hat hacker’ and provided to pay an extra $25,000 for his or her earlier report. Nevertheless, {the marketplace} additionally requested the dev to confirm their KYC, following which they declined the bounty supply.

OpenSea bug bounty payout: What we all know up to now

Yesterday, Mr. Ø took to Twitter to report a brand new OpenSea bug. In response to them, this vulnerability is on the “identical scale or worse than the final one”. In addition they defined that whereas the bug wouldn’t have an effect on the NFTs in customers’ wallets, it may nonetheless price “thousands and thousands in damages”. If that is true, it may additional put OpenSea customers at a significant threat. In any case, an earlier itemizing exploit had price a number of customers their high-value NFTs. 

“Opensea has reassessed our earlier case and has provided an extra $25k IF WE KYC,” Mr. Ø defined. “They’ve additionally provided an analogous reward for yesterday’s vulnerability, after they’ve gauged the severity.”

Nevertheless, they “respectfully” declined OpenSea’s supply and wished them the “better of luck” to find the bug. Apart from, the dev additionally shared screenshots of their alleged dialog with OpenSea. In one of many texts, OpenSea allegedly mentioned, “We don’t know the main points however the longer this goes on individuals could also be in danger as per your remark…”

OpenSea has come beneath hearth earlier than as effectively for his or her measly bug bounty payouts. To make issues worse, the platform is now asking White Hat Hackers to confirm their KYC. Hopefully, OpenSea will repair the present vulnerability earlier than it’s too late.