- CoinGecko has acknowledged a recent security incident.
- The incident emanated from CoinGeckoโs third-party platform.
- User information was compromised.
Crypto data aggregator CoinGecko announced Friday that it recently suffered a data breach through its third-party email platform.
The development comes after Tether CEO Paolo Ardoino warned on June 5 that a โprominent vendorโ used by crypto companies to manage mailing lists might have been hacked. CoinGecko co-founder and COO Bobby Ong later claimed the attack was โongoingโ but did not mention the compromised company.
CoinGecko Data Breach
According to the announcement, CoinGecko detected unusual activity on its third-party email marketing platform GetResponse on June 5.
Sponsored
โAn attacker had compromised a GetResponse employeeโs account, leading to a breach. We received confirmation from the GetResponse team on 6 June, 2024, at 11:58 AM UTC, that a data breach had occurred,โ the statement read.
CoinGecko said the attacker exported 1,916,596 contacts from its GetResponse account and sent phishing emails to 23,723 email addresses from another GetResponse clientโs account (alj.associates).
While CoinGeckoโs employee flagged the activity and helped the company to โpromptly block further email delivery,โ the security incident compromised usersโ personal information. This included names, IP addresses, location of email opens, and other metadata such as subscription plan and account sign-up date.
Noting that no phishing emails were sent from CoinGeckoโs domain, the crypto data aggregator stated that its user accounts remain secure and that no passwords were compromised in the breach.
โWe are actively investigating this situation with GetResponse and informing all affected users. Additionally, we are thoroughly reviewing our security procedures and will look to enhance our security protocols in collaboration with our vendors,โ CoinGecko said.
Per the statement, CoinGecko has directly emailed users affected by the breach.
Stay updated on DMM Bitcoinโs recovery plan after a $300M exploit:
DMM Bitcoin Shares Recovery Plan Following $300M BTC Hack
Read this article to learn about the safety of your crypto extensions:
Are Your Crypto Extensions Safe? $1M Binance Hack Reveals Risks