Yesterday I was talking about a cute new digital collectable collection on OpenSea that I was considering buying into, noting that there were 10k which had recently sold out and the cheapest ones were getting more expensive by the minute. Tara was sitting across from me at the breakfast table checking it out as well. We talked about how cute they were and sent a few back and forth to look at. As Tara was getting ready to buy one she asked “wait, why are there only 800 of these, are they still minting them?” We quickly realized that she was looking at a fraudulent collection that had been named almost identically with only one extra letter, but was coming up first in the search results. I immediately sent a tweet to Nate Chastain who is Head of Product at OpenSea and he pulled down the fraudulent account right away. Unfortunately it looked like 30 or 40 people had already fallen for the scam while it was active, and for those people there’s no way recourse or way to get their money back. Had the real account been verified it’s probably safe to say that none of those people would have been scammed, it was only because Tara happened to notice the difference that we didn’t fall for it ourselves. And how long would it have stayed up if someone who knew who to reach out to on Twitter didn’t spot it?

Sadly, this isn’t the first time this has happened with OpenSea, in fact it happens regularly – and much of that can be blamed on how OpenSea handles verification. And because transactions happen instantly, even if a scam is found pretty quickly the money has already been transferred to the scammer with no way to get it back. Essentially they have created a situation with high reward and low risk for scammers to just keep setting up fake accounts and collecting Ξ every single day.

But let’s step back for moment and look at how we got into this mess. Verification as we think of it today both began with and is the fault of Twitter. In 2009 Twitter was sued by Tony La Russa relating to a fake account in his name, and while the suit was eventually dropped Twitter instituted Verified Accounts in the wake of that suit to give them a solution for the future. Years earlier Friendster had gone to war with the so called Fakesters by just banning accounts left and right, which is arguably what caused people to flee that site in favor of MySpace. Following that lead, Twitter had been applauded for taking a more permissive approach to free speech / parody and in theory this step allowed them to keep doing that. You might think this was a good move and had it been rolled out as promised it might have been, but rather than being used to, you know, actually verify an account was who it was claiming to be, Twitter decided to monetize the feature. I wrote about this back in 2015 as one of the big problems on the site at the time, but essentially they gave verifications away to famous people to make it desirable and they would use a few verifications as a lure to companies to get them to buy ads. They also began threatening to remove verification for accounts they deemed to be in violation of their TOS. This had a terrible impact on the public perception of “verified” and instead of seeing it as “this account is who is who it is claiming to be” people began to see it as a kind of endorsement. It took many years of very loud objection to this by many people before eventually Twitter came around and stopped using it as a prize and published a clear set of criteria which allowed non-celebrities or paying customers to get the prized blue checkmark. Anyone can now apply to be verified and Twitter’s official position is that it is not an endorsement but rather confirms they have seen evidence that proves the account is or represents who it claims to. This is a good thing.

Conversely Instagram is still very much doing the “We verify accounts on a case by case basis, but we won’t tell you what our criteria is” thing which leads to incredibly high profile people unable to get verified and regular scams taking place on the app. I’ll skip the breakdown about how every other site handles this and get right to the obvious point – Verified should mean exactly that. The account has been verified. It is who it claims to be. That the site has seen enough evidence to confirm identity. End of story. It should not be seen as an endorsement, or used in an editorial manor. It shouldn’t be weaponized. And to be very clear, when a site decides to have a vague policy that is enforced on a case by case basis, that’s what they are doing – and it directly harms the community. Ironically, almost every site doing this claims to be doing it to protect their users. I know because I’ve talked with most of them. They care, but they are misdirected.

Which brings us back to OpenSea. I’ve written about different issues on OpenSea many times this year but if you are new to this let me quickly summarize that they are the absolute largest NFT marketplace by user base and have raised more venture capitol than any of the other competing site. Unfortunately from an outside view, teams appear to have a fraction of the resources they need to get anything done. I will say that this has taken a significant step in the right direction with the addition of Nate Chastain who I mentioned above. Prior to his hiring the only way I could get any comment or issue addressed was to DM with one of several anonymous team members on Twitter who would promise me they would try to get the person “in charge” to do something and then cross my fingers and hope that it would work out. It did about 50% of the time. Now with Nate I can tweet publicly with a real person and get a comment or an issue addressed 100% of the time. That’s a wonderful step forward, but still incredibly problematic. OpenSea recently raised $100 Million on a $1.5 Billion valuation–that the Head of Product has to personally handle support requests sent to him on his personal Twitter is fucking ridiculous. I appreciate the personal touch of course, but come on–It’s not fair to him, and it’s not fair to the community. With that said, I truly believe Nate is trying to do the right thing, but I also think OpenSea’s policies are misdirected. And while misdirected policies on social media sites can lead to difficult social situations, misdirected policies on market places also end up costing people real money.

So what are those policies? Thats a good question and it seems to be somewhat fluid. To begin with, OpenSea has 2 different and separate kinds of verification. Account level – are you who you say you are, and Collection level – Is this a legitimate project or not? (To sell an NFT on OpenSea you have to make a Collection for it to live in). I’m verified on Twitter, and after connecting my OpenSea account to my Twitter account and tweeting out something OpenSea was able to confirm I was who I said I was and verified my account there as well. You might think that if OpenSea is confident enough in what they know about who I am that they can verify my account that they would use that information to automatically verify my collections. That would make sense, but that is not the case. Collections are verified separately and somewhat arbitrarily. Earlier this year only verified collections turned up in search results. Documents on OpenSea’s site recommended after you create your collection you tweet the link to them or post it in their discord and they would then verify it. That got overwhelming quickly and the backlog became insane, so they changed to allow all collections in the search results, but buying from an unverified collection gives you a popup saying that OpenSea hasn’t had a chance to verify it yet. But due to the sheer numbers of listings being added every day you are much more likely to see that popup than not, so it’s become easily ignorable noise – just enough for OpenSea to waive responsibility for people who get scammed.

These verifications before seemed to be based on someone looking at the collection and seeing if it looked on the up and up and then hitting OK. But that’s changed and OpenSea is now treating Collection verification as an endorsement. Officially, you can no longer request that your collection be verified. Instead, collections are supposedly verified after hitting a completely arbitrary bar of 100Ξ in sales volume, but there are “other ways” to get verified as well. Like being a celebrity (but not a famous artist). Or asking on Twitter. (And that doesn’t even begin to address the problem that tying authenticity to a sales number disadvantages lower priced work made in smaller numbers, in favor of higher priced work made in bulk – which suggests OpenSea is more concerned with how much money they are going to make and less about protecting people from scams.) In addition to having a verified account, other things that will not get you a verified collection include having other verified collections (every new collection has to start from 0), having impersonators actively scamming people by pretending to be you, or making what they consider to be an homage or derivative art. That last one is most troubling because all art is derivative, so this means someone has to make call about what they think is too derivative which means individual people are projecting their personal biases onto a system that is designed to protect people. This means if you like a project that individual employees at OpenSea don’t, they are less concerned with protecting you. I’m sure OpenSea doesn’t see it that way because they don’t want to think that their policies are hurting people, but thats exactly what is going on.

I’ve written before about the issues OpenSea has been dealing with in relation to struggles over IP, so their concern is fair, but all the more reason why they shouldn’t be getting involved with editorial decisions and stick to separating scams from legitimate projects. Let’s look at some cats as an example. Stoner Cats is a high profile celebrity backed project that received a mixed reception from the NFT community, including a competing parody project conceived and launched in 24 hours called Blazed Cats. Both projects are algorithmically generated collections of 10,000 images. On the Blazed Cats website they make many references to Stoner Cats, proudly declare their project as reactionary one-upsmanship and repeatedly refer to themselves as a parody. OpenSea did not rule this as an homage and verified it. Conversely, PunkCats is a collection of original hand made illustrations with the concept of being the matching pet to arguably the most famous NFT project ever, CryptoPunks. In fact several CryptoPunk owners reached out to the artist while they were being drawn and commissioned a cat to match their punk. OpenSea initially declined to verify the collection because it hadn’t hit the 100Ξ bar, but once it did (currently over 300Ξ in volume) they decided it was not transformative enough, too much of an homage and refused to verify it. In this case it’s clear that the decisions are both arbitrary and also reflective of individual biases. According to OpenSea, a pixel human head and neck and a full body of a cat are the same thing, but two full body cartoon cats standing on their hind legs and holding (or not holding) similar accessories in the same way are totally different.

Makes you wonder what other art OpenSea would deem too much of an homage and not worthy of verification?

The truth is I could nit-pick this for hours. I have hundreds of screenshots and links to support my argument that OpenSea is not uniformly applying their policy across all projects and instead making personal judgement calls on a case by case basis. Which is literally the only thing they can do to enforce editorial policies like that. This is unscalable and it’s not what they should be doing anyway. OpenSea should not be making judgement calls about IP, or deciding what is or isn’t a homage or is or isn’t derivative enough. That’s not their business and they shouldn’t be getting mixed up in it. They are a market place and their responsibility is to their customers who they should be trying to protect by verifying what is a legitimate project run by a known individual or company and sussing out the frauds and scammers. By creating these arbitrary rules and moving goal posts around, they are creating the absolute perfect environment for scammers to prey on their customers, and they are only able to react after the fact – after people have been scammed and money has been lost.

Make no mistake: The way OpenSea currently looks at verification makes it very easy for people to be scammed, and every single day they continue in that direction they are allowing those scams to persist, and people to be harmed because of it.

I’ve said this on Twitter but I’ll say it again here: OpenSea needs to immediately drop the 100Ξ barrier to verification and make collection verification a subset of account verification. Once someone meets the reasonable requirements for account verification, any collection they create should be automatically verified. This way new collections by known creators are verified the first second they make something available, and there’s no window for scammer to sneak in. Funds from the first 24 hours of sales on unverified accounts or collections should be held in escrow so that if a scam is detected people can get their money back. Anyone caught intentionally posting fraudulent work or scamming people should have their entire account banned. OpenSea should defer all IP claims to existing copyright law, they should let people files notices and appeals and respond accordingly, but they should not be responding to “requests” from people who may or may not have legal grounds to make those requests, nor be making judgement calls on their own. They should recognize that as an art market, all art is derivative and they should immediately stop acting like they are in a position to decide who’s ideas are original enough. They should also use some of those massive piles of cash they have to hire a proper staff to manage all this so that individual employees are not expected to deal with issues brought to them over Twitter.