December 14, 2022, cryptocurrency exchange Gemini has revealed that some Gemini customers have been targeted in phishing attacks. The company believes this is due to a third-party vendor leak. The report revealed that Gemini’s leak was about “his 5,701,649 lines of information about Gemini’s customers,” but Gemini did not disclose how many customers were affected by the breach. Additionally, according to Ionut Ilascu, author of Cybersecurity at Bleeping Computer, data from Gemini’s customer information breach is advertised as early as September 2022, when he will be available for sale on hacker forums.
Multiple hackers discovered Gemini customer data breach Forums
Three days ago, a database containing the phone numbers and email addresses of 5.7 million Gemini users was compromised. Bitcoin.com News reported on cryptocurrency exchange Gemini after the leak was discovered. The cryptocurrency reporter details that Zhiyuan Sun witnessed documents showing “his 5,701,649 lines of information about Gemini’s customers.”
Gemini addressed this issue in a blog post on December 14, 2022, explaining that it was likely caused by a third-party vendor. The exchange did not disclose how many customer accounts were affected, and Gemini did not detail which third-party vendor was responsible for the data breach. A day after Gemini’s blog post was published, Bleeping Computer cybersecurity author Ionut Ilascu wrote an article explaining that Gemini’s leaked database has been for sale since September 2022. released.
Ilascu was discovered by cyber crime intelligence platform KelaIt said there were “multiple posts on hacker forums” indicating the leak was for sale, including . One user tried to sell the leak for 30 BTC or about $500,000 using today’s Bitcoin exchange rate. Ilascu further revealed that the data breach also appeared on hacker forums in October 2022 when the seller took advantage of “another alias.”
Another person shared information on his hacker site in mid-November, and in this particular post, the leak not only included his Gemini data, but also other exchanges. are also said to have been included. A post published on Breachforums provided the database for free before the account was banned from the forums. A now-banned user told a forum user that three digits from a set of customer phone numbers were missing from a database leak.
Image credit: Shutterstock, Pixabay, Wiki Commons