Haveibeenpwned reported that nefarious cyber criminals illegally obtained and uploaded the registered emails of 3,117,548 CMC users to hacking forums. These email addresses are now being sold on the dark web.
The addresses are being traded on “hacking forums,” according to haveibeenpwned. CoinMarketCap admits to “correlation” with its subscriber base but insists that its servers were not compromised.
Millions of email addresses linked to the cryptocurrency market data website CoinMarketCap (CMC) are said to have been compromised.
3.1 million addresses are now trading on “hacking forums,” according to the data security breach website haveibeenpwned.
CMC announced on Saturday that it had become aware of batches of data appearing online “purporting to be a list of user accounts.” The method by which the addresses were obtained is unknown. The website, which is owned by Binance, also stated that only addresses, not passwords, had been exposed, despite the fact that it discovered a “correlation” and advised users to use separate and unique passwords across multiple sites.
CMC wrote on its blog:
“At this point in our investigation, we’ve come to the conclusion that the leak did not come from CoinMarketCap servers. As no passwords are included in the data we have seen, we believe that it is most likely sourced from another platform where users may have reused passwords across multiple sites.”