Several Gemini customers received phishing emails to their leaked email addresses.
Gemini, a cryptocurrency exchange and custodian established in 2014, has experienced a data breach caused by “an incident at a third-party vendor.”
According to the blog post shared on December 14th, the “incident” led to hackers obtaining around 5.7 million Geminis’ customer email addresses and partial phone numbers. The majority of phone numbers had several of their digits blurred. Thus hackers didn’t obtain the complete combination.
Did you know?
Want to get smarter & wealthier with crypto?
Subscribe - We publish new crypto explainer videos every week!
What is Yield Farming in Crypto? (Animated Explanation)
It is reported that the data breach did not include information containing customer names, addresses or Know Your Customer information.
On top of that, it is worth noting that the document collected by the hackers contained duplicate email addresses. Therefore, one can assume that the total number of obtained email addresses and phone numbers is less than 5.7 million.
In its blog post, the crypto exchange emphasized that “no Gemini account information or systems were impacted” and user funds are completely safe.
However, Gemini highlighted that due to “an incident at a third-party vendor,” Gemini customers have been experiencing phishing attacks.
Despite Gemini addressing the situation on December 14th, crypto community members used various platforms, including Reddit and Twitter, to claim that the incident happened weeks ago.
A month ago, one Gemini customer used the official r/Gemini subreddit to reveal that they received a phishing email to the address used purely to register to Gemini. In the message, a Reddit user dubbed DaveJonesBones stated:
The worrying thing is that my (receiving) email address ONLY exists in my Gemini account and nowhere else. I setup custom email addresses for every service I use, and I only use my personal domain for a limited number of trusted accounts.
Later several Gemini users joined the discussion stating that they also received suspicious emails. Under the post, Gemini’s representative noted that they are “reporting this to <their> security team.”
In other Gemini-related news, the crypto exchange has recently received regulatory approval to operate in Italy and Greece.
