BlockFi users targeted in ‘racist and vulgar’ email attack

Published at: March 10, 2021

This week's temporary closure of registrations for crypto lending and borrowing app BlockFi was due to an attack by a “malicious actor” according to Forbes.

According to employees of the company, a single attacker began the registration process for more 1,000 fake accounts on Mar. 7, using email addresses belonging to real users.

The attacker entered “vulgar and racist” terms as the first and last names for the fake accounts which resulted in about 500 emails containing offensive language being sent out automatically before BlockFi caught on to the problem and halted registrations altogether.

I received an email from @BlockFi this weekend asking me to confirm my account (which I never signed up for in the first place). When I opened the email, it began with: "Hi **n-word**," except of course this most violent racial slur was spelled out fully (1/*)

— Sara Sheridan (@SaraSheridan14) March 8, 2021

“I am the farthest thing from a crypto investor,” tweeted Philadelphia-based journalist Sara Sheridan in all caps on Mar. 8. “I never even heard of BlockFi before receiving an email addressing me as a racial slur.”

Zac Prince, the CEO of BlockFi, initially described the attack as a “technical issue with the new account signup workflow” before unveiling the full scope of what had happened in today’s Forbes article.

1/ We are temporarily pausing new signups for @BlockFi. Existing clients continue to have full access to the platform and everything other than new sign ups is operating normally. We experienced a minor

— Zac Prince (@BlockFiZac) March 8, 2021

A similar attack was reported by crypto derivatives exchange FTX last month. Attackers managed to trick the feed from Blockfolio’s Signal app, a product acquired by FTX in Aug. 2020, into displaying racist messages. FTX CEO Sam Bankman-Fried believes the attack was done by a competitor.

Some BlockFi customers reported not being able to access the company’s website altogether following a scheduled maintenance period which had concluded earlier in the day, on Mar. 7, but the matter may be unrelated to the attack.

@BlockFiZac Is this getting fixed? I cannot login? Help us! pic.twitter.com/ayjBrlSP62

— adamfalah (@adamfalah19) March 9, 2021

Visitors to the BlockFi website are currently met with a message clarifying that while registration remains closed, pre-existing BlockFi clients continue to have full access to the platform.

The attack BlockFi’s problems come at a critical time for the three year old company as it is currently attempting to close a round of funding that will bring its valuation to approx. $3 billion. The crypto assets lender has attracted over $100 million in venture capital thus far, including contributions from Coinbase Ventures and Winklevoss Capital.

In May 2020, BlockFi suffered a data breach in which the full names, addresses and dates of birth of customers were compromised.

Tags
Related Posts
Supply chain tokens see triple-digit gains as the global economy recovers
Over the last few weeks, blockchain projects focused on supply chains and logistics have seen tremendous growth as the coronavirus-induced economic gridlock begins to loosen and future concerns related to the global pandemic subside. Three logistics projects that have benefited from the improving economic outlook are OriginTrail, Waltonchain and Wabi. Since early February, each has seen its token price increase by up to 300%. TRAC/USD OriginTrail is a self-described “ecosystem dedicated to making global supply chains work together by enabling a universal, collaborative and trusted data exchange.” The project was established in 2011 with the goal of providing enterprise users …
Technology / March 15, 2021
Crypto Users Could Soon Receive Interest From Two DeFi Protocols at Once
The Aave lending protocol introduced a new market based on Uniswap liquidity tokens, which lets depositors borrow assets against these synthetic tokens. The Uniswap market was launched and announced on May 28, and it lets holders of specific liquidity tokens use them as collateral to borrow crypto assets from the protocol. Each liquidity token represents ownership in a Uniswap liquidity provider pool, and they can be redeemed for the actual tokens at any point. Liquidity providers receive a portion of the trading fees acquired by the Uniswap protocol, making it one of the many ways of earning passive income through …
Technology / May 29, 2020
Will the launch of Uniswap v3 spark a new DeFi boom?
With the total value locked in decentralized finance on Ethereum now $89 billion, the market is eagerly waiting to see if the launch of Uniswap v3 could be the catalyst for DeFi’s next big bull run. Uniswap v3 promises advanced new features and opportunities for yield generation with its launch scheduled for Wednesday. Uniswap is emphasizing three new features for liquidity providers — customizable capital deployment across a market’s entire price curve in the form of concentrated liquidity, tiered market maker fees offering boosted returns for volatile pairs subject to impermanent loss, and cheaper access to oracles for improved data …
Technology / May 5, 2021
3 things the crypto sector must offer to truly mainstream with TradFi
In the past year, we’ve seen the crypto economy undergo exponential expansion as heaps of money poured into various cryptocurrencies, decentralized finance (DeFi), nonfungible tokens (NFT), crypto indices, insurance products and decentralized options markets. The total value locked (TVL) in the DeFi sector across all chains has grown from $18 billion at the beginning of 2021 to $240 billion in January 2022. With so much liquidity in the ecosystem, the crypto lending space has also grown a significant amount, from $60 million at the beginning of 2021 to over $400 million by January 2022. Despite the exponential growth and the …
Technology / Feb. 5, 2022
Celsius’ crisis exposes problems of low liquidity in bear markets
After one week of pausing user withdrawals, swaps and transfers, the firm said it was maintaining an open dialogue with regulators and officials and plans to continue working with them regarding this pause. Celsius has yet to comment on when the company is going to stabilize its operations. Celsius has also paused communications on Twitter Spaces and ask-me-anything (AMA) sessions “to focus on navigating these unprecedented challenges.” Although Celsius has refrained from communication, media and social media have been buzzing with news and speculation going on around the past, present and future of the company. One of the most interesting …
Adoption / June 22, 2022