EddieJayonCrypto

 10 Jun 24

tl;dr

CoinGecko experienced a security breach through its third-party email platform, GetResponse, resulting in the exposure of user data including names, email addresses, IP addresses, and other metadata. However, user accounts and passwords remain secure. The attacker exported 1,916,596 contacts from Co...

html

CoinGecko experienced a security breach through its third-party email platform, GetResponse, leading to the exposure of user data. The breach resulted in the unauthorized access of user names, email addresses, IP addresses, and other metadata, but user accounts and passwords remain secure.


1,916,596 contacts were exported from CoinGecko's GetResponse account, and phishing emails were sent to 23,723 email addresses using another GetResponse client's account.


CoinGecko warns users about potential phishing or spam emails, clarifying that any emails offering token airdrops are unauthorized.


The company is working with GetResponse to block additional email deliveries, investigating the situation, informing affected users, and reviewing security procedures.


CoinGecko experienced a security breach through its third-party email platform, GetResponse, resulting in the exposure of user data including names, email addresses, IP addresses, and other metadata. However, user accounts and passwords remain secure. The attacker exported 1,916,596 contacts from CoinGecko's GetResponse account and sent phishing emails to 23,723 addresses using another client's account. CoinGecko warns users of potential phishing or spam emails and clarifies that any emails offering token airdrops are unauthorized. The company is working with GetResponse to address the issue, inform affected users, and review its security procedures.


CoinGecko is warning its users to be cautious when opening emails after the cryptocurrency data aggregator experienced a security breach through its third-party email platform. In a statement, CoinGecko says that on June 5th, it detected unusual activity on its email marketing platform, GetResponse. The firm later received confirmation that an attacker obtained and used a GetResponse employee’s login credentials to access customer accounts. The security incident led to the exposure of user data including user names, email addresses, IP addresses, locations of email opens, and other metadata such as account sign-up dates and subscription plans. CoinGecko assured though that user accounts remain secure and the passwords were not compromised. The attacker managed to export 1,916,596 contacts from CoinGecko’s GetResponse account and used another GetResponse client’s account to send phishing emails to 23,723 emails. CoinGecko says that it already coordinated with GetResponse to block additional email deliveries, but warns users that they may still see a surge in phishing or spam emails. “Any email claiming to offer token airdrops by CoinGecko or GeckoTerminal are unauthorized emails sent by the attacker. We do NOT have any officially issued coins or tokens.” CoinGecko says it is investigating the situation with GetResponse, informing affected users and reviewing its security procedures.

Disclaimer

The opinions expressed by the writers at Grow My Bag are their own and do not reflect the official stance of Grow My Bag. The content provided on our site is not intended as investment advice, and Grow My Bag is not an investment advisor. We do not endorse buying or selling any cryptocurrencies or digital assets mentioned in our articles. High-risk investments in Bitcoin, cryptocurrencies, and digital assets require thorough due diligence, and all transfers and trades made are at your own risk. Grow My Bag is not responsible for any potential losses and participates in affiliate marketing.
 21 Sep 24
 20 Sep 24
 20 Sep 24