I just got an email from "noreply@autodesk.com", claiming to be from "opensea.io".<p>The email is domain-verified (for Autodesk.com) by Google, so it seems the Autodesk email system has been compromised.
Can confirm, I've got a DKIM passing email today asking me to sell my "Illuvium". DKIM auth result header:<p>> Authentication-Results: spamfilter01.heinlein-hosting.de (amavisd-new);
> dkim=pass (2048-bit key) header.d=autodesk.com<p>For this DKIM-Signature:<p>> DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=autodesk.com;
> h=from:subject:mime-version:list-unsubscribe:content-type:reply-to:
> cc:content-type:from:subject:to;
> s=s11; bh=...<p>MTA:<p>> Received: from ec2-3-8-140-122.eu-west-2.compute.amazonaws.com (unknown)
> by geopod-ismtpd-13 (SG) with ESMTP id n5WDORJ6Taauv7FuUNA9Ug<p>I wonder if just their DKIM selector got stolen or someone owned their AWS accounts as well?
I got a similar one from Autodesk, but it was about Magic Eden instead of OpenSea. I knew it was fake, but I still clicked the link to see how it could be on Autodesk (because the link showed an Autodesk URL). Of course, I did not connect my wallet or do anything else, I just looked at the page and then closed it. Am I in any danger?
I also got the same email an hour ago. noreply@autodesk.com with subject "New Alert!". At first I was wondered why this OpenSea type scam email didn't automatically go into the spam folder, turned out to be from a verified domain.