Blockchain analytics platform CoinGecko has confirmed that its third-party email management platform GetResponse was a victim of a data breach that exposed the contact details of over 1.9 million of its users.
In a press release on June 7, 2024, the platform explained that the breach was a result of the attacker gaining access to a GetResponse employee’s account. The attacker was able to export 1,916,596 contacts from CoinGecko’s GetResponse account and then used another GetResponse customer to send phishing emails to 23,723 users.
CoinGeckoe claimed that its security team collaborated with GetResponse to stop the delivery of emails after it noticed the strange activity.
According to the platform, user accounts are still safe, and no passwords were stolen. The personal information compromised in the incident was only users’ names (if supplied at sign-up), email addresses, IP addresses, email opening locations, and other metadata, such as account sign-up dates and subscription plans.
CoinGecko noted that it is actively investigating the situation with GetResponse and has emailed affected users directly to alert them. IT also stated that it is evaluating its security standards and working with its providers to improve them.
Notably, on June 5, 2024, Tether’s CEO, Paolo Ardoino, revealed that a number of cryptocurrency companies could be the victim of an email vendor data breach.
At the time, Bobby Ong, COO and co-founder of CoinGecko, confirmed that the breach affected a crypto email newsletter vendor utilized by multiple organizations and that CoinGecko was likely vulnerable. He warned users to exercise caution when they receive emails promoting fictitious token launches associated with cryptocurrency companies.
In its press release, CoinGecko emphasized that it does not have any officially issued coins or tokens, and as such, any email purporting to offer token airdrops by CoinGecko or GeckoTerminal is unapproved and was sent by the attacker
Users should be on the lookout for emails purporting to give token airdrops, be suspicious of emails from unknown or deceptive domains, and refrain from clicking on links or downloading attachments from unwelcome sources.
If you want to read more news articles like this, visit DeFi Planet and follow us on Twitter, LinkedIn, Facebook, Instagram, and CoinMarketCap Community.
“Take control of your crypto portfolio with MARKETS PRO, DeFi Planet’s suite of analytics tools.”
