Subj : FTX, Genesis, BlockFi customer details at risk following data bre To : All From : TechnologyDaily Date : Mon Aug 28 2023 16:15:04 FTX, Genesis, BlockFi customer details at risk following data breach Date: Mon, 28 Aug 2023 15:06:04 +0000 Description: A third party was breached following a SIM-swapping attack, and sensitive customer data was stolen. FULL STORY ====================================================================== As if FTX creditors dont have enough on their plate, now they have to combat inevitable phishing attacks that will come following the recent data breach at Kroll. Kroll, a financial firm that handles bankruptcy claims for insolvent crypto businesses FTX, BlockFi, and Genesis, confirmed that a threat actor managed to compromise an account belonging to one of its employees and use it to steal certain data on a limited number of users. FTX and BlockFi posted a message on Twitter, saying the attack resulted in the theft of limited, non-sensitive customer data of specific claimants. Phishing season Apparently, the attacker managed to SIM-swap one of Krolls employees T-Mobile accounts and use it to move past the multifactor authentication (MFA) security protocol and enter the companys systems. Once inside, they stole things like full names, postal addresses, email addresses, and debtor claim details, of an unknown number of creditors. Multiple crypto businesses went bust in 2022, losing billions of dollars worth of cryptocurrencies of people who used their services. Some of these companies are now in the middle of their bankruptcy proceedings. Read more > FTXs collapse shows new money cryptocurrencies still suffer from many of the same old problems > Thousands of fake cryptocurrency sites trap users in fake reward schemes > These are the best endpoint protection tools around Kroll said it would notify affected individuals directly. The breach has since been contained, it was added. While the attackers may have been pushed out, the damage has been done. Some people have already taken to social media to warn about phishing emails they received. In most cases, the attackers are impersonating FTX and telling the victims that crypto asset withdrawal has been re-enabled. The goal of the campaign, however, is to trick the victims into giving away whatever cryptocurrencies they had left elsewhere. Finally, a spokesperson for Kroll told the publication that there is no evidence the attacker managed to move laterally to other user accounts or systems. The attack was limited to these three companies. Check out the best firewalls right now Via: BleepingComputer ====================================================================== Link to news story: https://www.techradar.com/pro/security/ftx-genesis-blockfi-customer-details-at -risk-following-data-breach --- Mystic BBS v1.12 A47 (Linux/64) * Origin: tqwNet Technology News (1337:1/100) .