Cryptocurrency companies invest heavily in cybersecurity, but hackers can still “get it” by attacking third-party providers. That’s how Circle, BlockFi, Pantera Capital, NYDIG, and other prominent crypto firms disclosed over the weekend that their customer data had been hacked.
The companies disclosed in emails to customers that marketing and sales platform Hubspot had informed them that a hacker had obtained customers’ personal data.
“Pantera uses Hubspot as a customer relationship management platform… Information that may be accessed includes names, email addresses, mailing addresses, phone numbers and regulatory classifications,” Pantera Capital wrote.
Pantera added that the company’s “internal systems” were not affected by the incident, nor did the hackers obtain any Social Security numbers or government IDs provided by customers.
In a blog post over the weekend, HubSpot called the attack a “targeted incident against customers in the cryptocurrency industry” and said a “perpetrator” compromised an employee’s account.
Hubspot added that “data was exported from less than 30 Hubspot portals,” but did not provide a list of which customer accounts were compromised.
The identities of some of the affected companies were made public because the companies themselves alerted their clients — a common practice to alert those clients while reducing the legal risk of such incidents. Such incidents could eventually lead to some class-action lawsuits and fines from regulators such as the Federal Trade Commission.
It’s unclear how comprehensive the hack was, in part because HubSpot has not disclosed how much data was stolen. But given that companies like BlockFi and Circle have millions of customers, the hack could be significant.
In the case of Circle, the company said: “Customer funds, financial transaction data and KYC data were not affected,” but added that customer contact information was stolen.
At the same time, in response to the data breach that occurred at Hubspot, BlockFi and Swan Bitcoin clarified and stated that their operations were not affected, the treasury was not at risk, and passwords and other content information were not affected because Hubspot is an external tool, so hackers cannot access internal systems.
It is unclear what the hackers intend to do with the data. In many cases, hackers sell stolen customer data on dark web forums, where criminals buy it for further hacking or phishing scams.
In a HubSpot incident, hackers or other crooks may use contact information such as email addresses to guess victims’ passwords and steal their passwords.
Circle also mentioned phishing in an email to customers, but it did not directly state that this would lead to an attack.
Oren Falkowitz, founder of Area 1, an anti-phishing service recently acquired by Cloudflare, believes phishing was the source of the incident.
“Clearly, the root cause of cyberattacks against HubSpot is phishing. Phishing remains the root cause of 95 percent of cyberattacks,” Falkowitz said in an email. The lack of accountability of holders is that such incidents can also lead to a new wave of phishing attacks, which have been reported by HubSpot customers.”
Posted by:CoinYuppie，Reprinted with attribution to:https://coinyuppie.com/hackers-steal-customer-data-of-large-crypto-companies-such-as-circle-and-blockfi-through-third-parties/
Coinyuppie is an open information publishing platform, all information provided is not related to the views and positions of coinyuppie, and does not constitute any investment and financial advice. Users are expected to carefully screen and prevent risks.