Celsius depositors should be on the alert for phishing scams after
The firm reported that some of its customer data had been exposed in a third-party data breach.
On July 26, Celsius released an email to its clients alerting them that a list of their emails had been disclosed by an employee of one of its business data management and messaging partners.
According to Celsius, the breach was triggered by an engineer at the Customer.io messaging platform who exposed the data to a third-party bad actor.
In an email to clients, Celsius noted, "We were recently notified by our vendor Customer.io that one of their employees accessed a list of Celsius client email addresses." The data breach is part of the same intrusion that exposed OpenSea client email addresses in June.
Celsius, on the other hand, downplayed the issue, claiming that it did not "present any substantial threats to our clients" and that they only wanted people to "be informed."
In a blog post on July 7, Customer.io stated, "We know this was the purposeful acts of a senior engineer who had an adequate degree of access to perform their tasks and delivered these email addresses to the malicious attacker." The employee has since been fired.
The crypto community, on the other hand, has begun to warn Celsius users about phishing attacks, which usually follow an email data leak.
Phishing is a type of social engineering in which targeted emails are sent to victims in order to trick them into exposing additional personal information or clicking links to malicious websites that install malware to steal or mine cryptocurrency.
A similar data breach in April 2021 purportedly targeted Celsius customers through a bogus website pretending to be the legitimate Celsius platform. Some received SMS and emails requesting personal information and seed phrases.
Perhaps the most well-known cryptocurrency data breach occurred in 2020, when the servers of hardware wallet provider Ledger were hacked. The exposure of thousands of customers' personal information on the internet caused unfathomable losses and even serious threats for many victims, yet the company has refused to compensate them.
Read also:
