Trident Crypto Fund Data Breach: 266,000 Passwords Stolen

Published at: March 6, 2020

In a major privacy breach, the usernames and passwords of more than a quarter of a million Trident Crypto Fund customers have been stolen and published online.

Technical director of cybersecurity firm DeviceLock Ashot Oganesyan told Russian news outlet IZ the database — which contains email addresses, cellphone numbers, encrypted passwords and IP addresses — had been uploaded to various file sharing websites on February 20.

Earlier this week, hackers decrypted and published close to 120,000 of the passwords, potentially enabling them to log into affected users’ accounts and access their funds.

10,000 Russians affected

Oganesyan said that while attacks on cryptocurrency exchanges and funds occur quite often, this hack was particularly noteworthy for having a major impact on Russian citizens. He said the database contained the data of about 10,000 Russians:

“Apparently, Russian citizens might already have got their data leaked before. However, no one has taken them into account before, and personal data leakage of 10,000 Trident Crypto Fund users can be considered the first major personal data leak of Russian crypto investors.”

Crypto platform data leaks on the rise

Sensitive data leaks at cryptocurrency-related businesses are happening ever more frequently. As Cointelegraph reported yesterday, Seychelles-based crypto derivatives exchange Digitex plans to remove its KYC identification processes this week in response to a major user data leak that happened last month.

In August last year, Binance admitted that it had discovered a hacker had obtained access to the KYC data of its customers that had been processed by a partner of the exchange.

Tags
Related Posts
FBI issues alert over cybercriminal exploits targeting DeFi
The U.S Federal Bureau of Investigation (FBI) has issued a fresh warning for investors in decentralized finance (DeFi) platforms, which have been targeted with $1.6 billion in exploits in 2022. In an Aug. 29 public service announcement on the FBI's Internet Crime Complaint Center, the agency said the exploits have caused investors to lose money — advising investors to conduct diligent research about Defi platforms before using them, while also urging platforms to improve monitoring and conduct m rigorous code testing. The law enforcement agency warned that cybercriminals are out in force to take advantage of "investors' increased interest in …
Blockchain / Aug. 30, 2022
Uranium Finance developer suspected of ‘leaking’ information leading to $50M exploit
The $50 million exploit of Uranium Finance, a decentralized finance protocol on Binance Smart Chain, may have been an inside job, according to a member of the project’s development team. The theory was put forward in Uranium Finance’s Telegram channel by a user named “Baymax,” who appears to be listed as an administrator. In a pinned post, Baymax explained that the security flaw leading to the exploit happened just two hours before version 2 of the protocol was launched. The suspicious timing of the exploit narrows down the list of potential perpetrators significantly. Baymax explained: “There are a total of …
Blockchain / April 28, 2021
US Secret Service Creates Finance-Related Cybercrime Task Force
The U.S. Secret Service announced the creation of the Cyber Fraud Task Force, or CFTF on July 10, after merged its Electronic Crimes Task Forces and Financial Crimes Task Forces into a single network. According to the official announcement, the Secret Service had been planning over two years to create a unified task force to combat cybercrimes related to the financial sector and fight things like ransomware attacks, business email compromise scams, credit card online stealing, among others. The CFTF appears in a context that the illegal market of credit card stolen data through the dark web and banking details …
Blockchain / July 12, 2020
Algo Capital Ex-CTO Takes ‘Full Responsibility’ for Hot Wallet Breach
The now former chief technical officer (CTO) of Algo Capital, the investment arm of blockchain firm Algorand, has published a statement in the wake of a major security breach of an Algo hot wallet under his personal management. As Cointelegraph recently reported, Pablo Yabo’s cellphone was compromised by hackers — leading to the theft of roughly $1 million to $2 million in Tether (USDT) and Algorand (ALGO) tokens. Securing funds “in a versatile manner” remains difficult In his statement, Yabo wrote that the incident had provoked considerable reflection on his part, adding: “The state of the ecosystem and the difficulties …
Blockchain / Oct. 7, 2019
Crypto hacks are set to hit all-time highs in 2022, analyst explains
Reducing the amount of hacking by improving cybersecurity should be considered a top priority for the crypto industry, said Kim Grauer, director of research of blockchain intelligence firm Chainalysis. As pointed out by the firm, this year could outpace 2021 in terms of crypto stolen through hacks. The vast majority of these exploits have been targeting the field of decentralized finance. “This can't go on in the industry because people are going to lose faith in investing in DeFi platforms”, Grauer said in an interview with Cointelegraph. Unlike centralized exchanges, which have improved their resiliency to crypto hacks, decentralized protocols …
Blockchain / Oct. 19, 2022