Phishing on the Rise: Binance & Gemini Data Hacked
A serious security breach exposed the data of more than 100,000 Binance and Gemini users on the dark web. Alarm in the crypto sector.
Over 100,000 users of the cryptocurrency exchanges Binance and Gemini have become vulnerable due to a serious security breach. The appearance of sensitive personal data for sale on the dark web has triggered serious concerns in the cryptocurrency industry. Full names, email addresses, phone numbers, and location details are among the information exposed, which could increase the risk of fraud and scams.
A user named AKM69 has posted for sale on the dark web a database that allegedly contains information about Gemini users. According to the report by Dark Web Informer, the dataset includes 100,000 records, mainly of US users, but also some from Singapore and the UK. The vendor claims the data may be used for marketing purposes, fraudulent activity or cryptocurrency recovery scams.
It is not yet clear whether the data leak is due to a direct attack or other vulnerabilities.
Suspected Phishing Attacks, Increase Losses in Crypto
On 26 March, prior to the Gemini incident, a dark web user named kiki88888 allegedly offered Binance user data for sale, including login details of over 132.000 accounts. According to Dark Web Informer, the Binance data breach was more likely to be related to phishing attacks rather than a direct penetration of the system. The informant urged users to "stop clicking on suspicious links".
"Some of you should really stop clicking on anything. Data courtesy of WhiteIntel."
X
So far, neither Binance nor Gemini have made any public statements about the data leaks. Phishing attacks against cryptocurrency users are widely documented: in March, social engineering scams caused losses exceeding 46 million dollars for Coinbase users.
Scam Sniffer, a blockchain security company, reported that phishing attacks caused losses exceeding 15 million dollars in the first two months of the year. Users must remain vigilant, avoiding unknown links and protecting their accounts with two-factor authentication (2FA) and hardware wallet.
Sign up for Spaziocrypto®
The Community for those Passionate about Blockchain and Innovative Technologies, uniting Passion, Knowledge and Opportunity in the Digital World.
Eleven Drainer, a new phishing-as-a-service, is expanding its business. Despite the sophistication of the attacks, human error remains the main weakness. The defence lies in user discipline.
North Korean hackers intensify crypto fraud: GhostCall and GhostHire campaigns use AI and the impersonation of Web3 executives to distribute malware, an evolution of the Lazarus Group.
According to Cisco Talos and Google, the North Korean groups Famous Chollima and UNC5342 are employing new strains of decentralised malware (such as EtherHiding and the BeaverTail/OtterCookie pair)
Over 100,000 users of the cryptocurrency exchanges Binance and Gemini have become vulnerable due to a serious security breach. The appearance of sensitive personal data for sale on the dark web has triggered serious concerns in the cryptocurrency industry. Full names, email addresses, phone numbers, and location details are among the information exposed, which could increase the risk of fraud and scams.
A user named AKM69 has posted for sale on the dark web a database that allegedly contains information about Gemini users. According to the report by Dark Web Informer, the dataset includes 100,000 records, mainly of US users, but also some from Singapore and the UK. The vendor claims the data may be used for marketing purposes, fraudulent activity or cryptocurrency recovery scams.
The report by Dark Web Informer
It is not yet clear whether the data leak is due to a direct attack or other vulnerabilities.
Suspected Phishing Attacks, Increase Losses in Crypto
On 26 March, prior to the Gemini incident, a dark web user named kiki88888 allegedly offered Binance user data for sale, including login details of over 132.000 accounts. According to Dark Web Informer, the Binance data breach was more likely to be related to phishing attacks rather than a direct penetration of the system. The informant urged users to "stop clicking on suspicious links".
In a post on X (formerly Twitter), he wrote:
So far, neither Binance nor Gemini have made any public statements about the data leaks. Phishing attacks against cryptocurrency users are widely documented: in March, social engineering scams caused losses exceeding 46 million dollars for Coinbase users.
Scam Sniffer, a blockchain security company, reported that phishing attacks caused losses exceeding 15 million dollars in the first two months of the year. Users must remain vigilant, avoiding unknown links and protecting their accounts with two-factor authentication (2FA) and hardware wallet.
Sign up for Spaziocrypto®
The Community for those Passionate about Blockchain and Innovative Technologies, uniting Passion, Knowledge and Opportunity in the Digital World.
No spam. Unsubscribe anytime.
Read Next
Crypto Clash: Beijing Blames US for LuBian's 127,000 BTC Bitcoin Exploit
China accuses Washington of 'draining' 127,000 BTC from LuBian in 2020. Researchers link the exploit to a flaw in key generation.
New Eleven Drainer attack: threat to crypto wallets
Eleven Drainer, a new phishing-as-a-service, is expanding its business. Despite the sophistication of the attacks, human error remains the main weakness. The defence lies in user discipline.
Evolved North Korean Hackers: New Danger Level for the Crypto Sector
North Korean hackers intensify crypto fraud: GhostCall and GhostHire campaigns use AI and the impersonation of Web3 executives to distribute malware, an evolution of the Lazarus Group.
North Korea: The Ultimate Cyber-Attack? Evasive Malware and Blockchain in the Crosshairs.
According to Cisco Talos and Google, the North Korean groups Famous Chollima and UNC5342 are employing new strains of decentralised malware (such as EtherHiding and the BeaverTail/OtterCookie pair)