CoinMarketCap hack reportedly leaks 3.1 million user email addresses

CoinMarketCap hack reportedly leaks 3.1 million user email addresses



CoinMarketCap, a price-tracking website for cryptocurrencies, has reportedly fallen victim to a hack that leaked 3.1 million (3,117,548) user email addresses. 

The information came into light after the hacked email addresses were found to be traded and sold online on various hacking forums, and revealed by Have I Been Pwned, a website dedicated to tracking hacks and compromised online accounts.

CoinMarketCap, a subsidiary of Binance cryptocurrency exchange, confirmed that the list of leaked user accounts matched its userbase:

“CoinMarketCap has become aware that batches of data have shown up online purporting to be a list of user accounts. While the data lists we have seen are only email addresses, we have found a correlation with our subscriber base.”

While confirming the correlation of the 3.1 million (3,117,548) user email addresses with its userbase on Oct. 12, the company has assured that the hackers did not gain access to any of the account passwords. “We have not found any evidence of a data leak from our own servers — we are actively investigating this issue and will update our subscribers as soon as we have any new information,” CoinMarketCap spokesperson said.

Phemex

Despite the confirmation, CoinMarketCap has yet to identify the exact cause of the hack. Responding to Cointelegraph’s request for comment, CoinMarketCap said:

“As no passwords are included in the data we have seen, we believe that it is most likely sourced from another platform where users may have reused passwords across multiple sites.”

Related: Hackers exploit MFA flaw to steal from 6,000 Coinbase customers — Report

A recent hack on the Coinbase crypto exchange resulted in the compromise of 6,000 user accounts.

The attack was a result of exploiting the exchange’s multifactor authentication (MFA) system, which suggests that the hackers had access to the user’s email addresses. According to Coinbase, the attackers identified a vulnerability in the account recovery process:

“In this incident, for customers who use SMS texts for two-factor authentication, the third party took advantage of a flaw in Coinbase’s SMS Account Recovery process in order to receive an SMS two-factor authentication token and gain access to your account.”

While the value of stolen assets has yet to be revealed by Coinbase, the incident was complimented by thousands of formal complaints from the account holders against the company.



Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

You have not selected any currency to display

Pin It on Pinterest

Ico-Investor
Changelly
Ico-Investor
CoinMarketCap hack reportedly leaks 3.1 million user email addresses
Phemex
Fiverr
World Vision first to trade crypto in South Korea after ban
Newer BTC Treasury firms untested in bear market: Max Keiser
Stripe holds early talks with banks to explore stablecoin integration
Panama City mayor says canal should give Bitcoin-paying ships faster access
European crypto firm K33 raises $6.2M for Bitcoin buys
Telegram to raise $1.5B in bond sale, Citadel joins BlackRock in backing the deal: WSJ
Blockonomics
Bybit
Santander Targets Crypto Payment Flows With Stablecoin Strategy
World Vision first to trade crypto in South Korea after ban
Traders shift strategies amid tariff turmoil
Ethereum's 50% rally setup vs. Bitcoin sparks altseason hopes
Performance Art Duo Operator 'Make Movement Collectible' With NFTs
Santander Targets Crypto Payment Flows With Stablecoin Strategy
World Vision first to trade crypto in South Korea after ban
Traders shift strategies amid tariff turmoil
Ethereum's 50% rally setup vs. Bitcoin sparks altseason hopes