back to top
Friday, June 7, 2024
HomeCryptoCoinGecko confirms a data breach from a third-party email platform

CoinGecko confirms a data breach from a third-party email platform

Independent cryptocurrency data aggregator CoinGecko has confirm data breach on June 5, 2024, via third-party email platform, GetResponse.

The company provided a transparent report on the incident, detailing steps to resolve the issue and advising users on how to protect themselves.

The data breach occurred when attackers compromised GetResponse employee accounts, allowing the export of 1,916,596 contacts from CoinGecko’s GetResponse account. The attacker then sent phishing emails to 23,723 emails from other GetResponse customers’ accounts (alj.associates). CoinGecko’s security team detected unusual activity and worked with GetResponse to stop the email scam.

Bitcoin Magazine previously reported on June 5 that a prominent email provider used by crypto firms may have been compromised, following a public disclosure from Tether CEO Paolo Ardoino.

CoinGecko co-founder and COO Bobby Ong corroborated this revelation and said that series of phishing emails about fake token launches were sent to email lists associated with multiple crypto companies. Ong advises the crypto community to be cautious when engaging in crypto news.

Incident details

Personal information compromised in the incident included username (if provided during registration), email address, IP address, email open location, and other metadata such as account registration date and plan register. However, CoinGecko user accounts remained secure and no passwords were compromised.

CoinGecko has notified affected users directly via email and is actively investigating the situation with GetResponse. The company is also reviewing its security processes and plans to enhance security protocols in collaboration with vendors.

Users are advised to be alert and cautious when opening emails as they may be phishing or spam emails. CoinGecko has emphasized that it is not the only cryptocurrency company affected by this targeted and organized attack.

Users should be cautious with emails from unfamiliar or misleading domains, avoid clicking on links or downloading attachments from unsolicited sources, and be wary of emails claiming to offer token airdrops. CoinGecko has clarified that any emails claiming to offer CoinGecko or GeckoTerminal token airdrops are not authorized and were sent by an attacker, as the company does not have any coins or tokens officially issued.

Itadori

According to Cryptobriefing

Mark Tyson
Mark Tyson
Freelance News Writer. Always interested in the way in which technology can change people's lives, and that is why I also advise individuals and companies when it comes to adopting all the advances in Apple devices and services.
RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

Fresh