Man
Professional
- Messages
- 2,965
- Reaction score
- 488
- Points
- 83
Cryptocurrency payment provider Transak has confirmed partial third-party access to the data of 92,554 users (1.14% of the total database). The company claims that financially sensitive or critical information was not compromised.
According to the team, the hacker gained unauthorized access to the laptop of one of the platform's employees through a phishing attack.
"With the help of compromised credentials, the attacker was able to log into a third-party KYC service provider that we use to scan and verify documents", Transak said.
Through the supplier's control panel, the attacker gained access to the following customer data:
* names;
* date of birth;
* identity documents (e.g. passports, driver's licenses);
* user selfie.
"After thorough checks, we can confidently confirm that no financially sensitive information, including email addresses, phone numbers, passwords, credit card details, social security numbers, has been compromised in any way", the security team stressed.
Transak operates as a completely non-custodial platform and does not store user funds.
While there is no indication that the hackers misused the obtained information, customers were advised to remain vigilant and monitor for suspicious activity. The service promised to send advice on further actions to all victims.
To localize and investigate the incident, the team engaged third-party leading experts in the field of cybersecurity. The Information Commissioner's Office in the UK and other regulators in the EU and the US have been notified of the situation.
In a comment to CoinDesk, Transak CEO Sami Start said that the employee responsible for the violation was fired.
As it became known later, the Stormous ransomware group took responsibility for the hack.
They claim that the scale of the stolen data is much broader and includes over 300 GB of confidential personal documents, including proof of addresses and financial statements.
According to them, the leak contains data from "over 1 million users" who are also customers of third-party players in the crypto industry.
According to the website, Transak is integrated with MetaMask, Trust Wallet, Coinbase Wallet, Ledger, Bitpay, and other cryptocurrency services.
According to CoinDesk, the Stormous ransomware is demanding $30,000 for data deletion, but the payment gateway does not intend to negotiate.
According to the team, the hacker gained unauthorized access to the laptop of one of the platform's employees through a phishing attack.
"With the help of compromised credentials, the attacker was able to log into a third-party KYC service provider that we use to scan and verify documents", Transak said.
Through the supplier's control panel, the attacker gained access to the following customer data:
* names;
* date of birth;
* identity documents (e.g. passports, driver's licenses);
* user selfie.
"After thorough checks, we can confidently confirm that no financially sensitive information, including email addresses, phone numbers, passwords, credit card details, social security numbers, has been compromised in any way", the security team stressed.
Transak operates as a completely non-custodial platform and does not store user funds.
While there is no indication that the hackers misused the obtained information, customers were advised to remain vigilant and monitor for suspicious activity. The service promised to send advice on further actions to all victims.
To localize and investigate the incident, the team engaged third-party leading experts in the field of cybersecurity. The Information Commissioner's Office in the UK and other regulators in the EU and the US have been notified of the situation.
In a comment to CoinDesk, Transak CEO Sami Start said that the employee responsible for the violation was fired.
As it became known later, the Stormous ransomware group took responsibility for the hack.
They claim that the scale of the stolen data is much broader and includes over 300 GB of confidential personal documents, including proof of addresses and financial statements.
According to them, the leak contains data from "over 1 million users" who are also customers of third-party players in the crypto industry.
According to the website, Transak is integrated with MetaMask, Trust Wallet, Coinbase Wallet, Ledger, Bitpay, and other cryptocurrency services.
According to CoinDesk, the Stormous ransomware is demanding $30,000 for data deletion, but the payment gateway does not intend to negotiate.
