News

Cryptocurrency Exchange Gemini Reveals Third-Party Data Breach

Published

4 months ago

on

Cryptocurrency exchange Gemini says it has suffered a data breach caused by a cyberattack on its undisclosed Automated Clearing House (ACH) service provider.

The American cryptocurrency exchange began sending notifications to affected individuals a month ago, on June 26, 2024, but filed a sample of letters yesterday at the Attorney General’s office in California.

According to the notice, Gemini suffered a third-party data breach when an unauthorized party breached its vendor’s systems between June 3 and June 7, 2024.

The incident affected some of Gemini’s customers’ banking information, including their full name, bank account number, and routing number, which Gemini used for ACH fund transfers.

The cryptocurrency exchange says that no other information, such as date of birth, physical address, Social Security number, email address, phone number, username or password, was hosted on the service provider’s systems and was not compromised.

The data breach incident is now contained and is being investigated with the help of external experts. However, no further information has been made available at this time.

Recipients of notifications are advised to pay attention to incoming communications and look for signs of fraud that use some of the exposed information.

Additionally, individuals are asked to enable multi-factor authentication on bank accounts provided to Gemini to prevent potential cyber attacks and to contact their bank to request additional security measures or a new account number.

If any suspicious or unauthorized activity is detected on the affected bank account, it should be reported to the bank immediately.

Gemini also advised recipients of the letter to consider placing fraud alerts or security freezes on their credit reports, but did not offer any identity theft protection services to those affected.

BleepingComputer reached out to Gemini to ask how many people are affected, but we have not yet received a response at the time of publication.

In 2022, Gemini suffered a massive data breach by a third-party vendor, which exposed contact details, including email addresses and phone numbers of 5.7 million of its users.

The stolen database was put up for sale on the dark web and later leaked for free on hacking forums.

Fuente

Related Topics:

Leave a Reply

Your email address will not be published. Required fields are marked *

Información básica sobre protección de datos Ver más

  • Responsable: Miguel Mamador.
  • Finalidad:  Moderar los comentarios.
  • Legitimación:  Por consentimiento del interesado.
  • Destinatarios y encargados de tratamiento:  No se ceden o comunican datos a terceros para prestar este servicio. El Titular ha contratado los servicios de alojamiento web a Banahosting que actúa como encargado de tratamiento.
  • Derechos: Acceder, rectificar y suprimir los datos.
  • Información Adicional: Puede consultar la información detallada en la Política de Privacidad.

Trending

Exit mobile version