Search
Close
  • Home
  • Business News
  • Crypto News
    • Binance
    • Bitcoin
    • Cardoso
    • Dogecoin
    • Ethereum
    • NFT X Metaverse
    • Shiba in
    • Other alt coins
  • Market News
  • Technology News
  • Tools
    • Crypto Table
    • Exchange Rate
    • Currency Converter
Menu
  • Home
  • Business News
  • Crypto News
    • Binance
    • Bitcoin
    • Cardoso
    • Dogecoin
    • Ethereum
    • NFT X Metaverse
    • Shiba in
    • Other alt coins
  • Market News
  • Technology News
  • Tools
    • Crypto Table
    • Exchange Rate
    • Currency Converter
Search
Close
Home Market News

Data Leak At Unchained Capital, NYDIG, Swan & BlockFi. At The Same Time

GentrySTACK by GentrySTACK
March 21, 2022
in Market News, Technology News
157
SHARES
2k
VIEWS
Share on FacebookShare on TwitterShare on Whatsapp

RelatedPosts

Republicans criticize Biden for waiting to shoot down Chinese balloon

Israeli judicial reform legislation won’t be halted, justice minister says

FTX Asks Politicians Who Received Bankman-Fried Donations to Return Money

What do Unchained Capital, NYDIG, Swan Bitcoin, and BlockFi have in common? Third-party providers. Even though the four companies confronted the data leak head-on and admitted their wrongs, the compromised security was someone else’s. Luckily, the data the bad actors stole was not critical financial information, but marketing-driven personal info. Terrible, to be sure, but not as terrible as it could have been.

Related Reading | BlockFi Survey Says 33% Of Women Plans To Buy Crypto This Year

All the companies – Unchained Capital, NYDIG, Swan Bitcoin, and BlockFi – released press releases with mea culpas. Let’s explore them to see what we learn from them.

What Does Unchained Capital Have To Say For Themselves?

The company’s CEO and Co-Founder, Joseph Kelly, addressed the problem through a letter in the Unchained Capital blog. Kelly let everyone know that “a security incident that occurred at one of the vendors we previously used for email marketing.” Also, that “there is no impact whatsoever to Unchained Capital’s systems.” Then, he described what happened:

“ActiveCampaign (“AC”), a third-party email marketing provider that Unchained Capital used until early in 2022, was the subject of a social engineering attack last week. This attack occurred after Unchained Capital had closed its AC account and requested that all data be purged.”

Notice that the provider, ActiveCampaign, is not the same as in the following three cases. Unchained Capital makes clear that none of this was stolen: “client profile information containing personally identifiable information (e.g. addresses, SSN, DOB, IDs, phone numbers used in our KYC process), bank account numbers, passwords, bitcoin addresses, bitcoin balances, loan balances, trading activity, vault statements, loan statements.”

On the other hand, the “data included: email addresses, usernames, account status (active/inactive) and whether the client had an active vault or loan with Unchained Capital (yes or no).” And, for some unlucky users, “their name, email address, and IP address”

What should compromised users do?

“It is always important that our clients be diligent about confirming all communications and any requests that appear to come from Unchained Capital. Given the data leak, clients should be on high alert for any spear phishing attempts. Be especially careful about clicking on any links.”

BTCUSD price chart for 03/21/2022 - TradingView

BTC price chart for 03/21/2022 on Oanda | Source: BTC/USD on TradingView.com

Swan Bitcoin, NYDIG, And BlockFi Point At Hubspot

We could ensemble the same press release that Unchained Capital put out using these three companies’ communications. The difference is, Hubspot is the culprit party here. A similar company to ActiveCampaign, but, a different company altogether. Is there any more to this story? Is someone targeting these bitcoin-related companies?

Let’s see what we can learn from Swan Bitcoin’s letter. Their description of the situation namedrops Hubspot four times in the first paragraph:

“On March 18th, 2022 one of our third-party vendors, Hubspot, confirmed that a bad actor gained access to Hubspot data after a Hubspot employee account was compromised. Hubspot notified us that the compromise was to a portion of their platform that included Swan client data.”

Yesterday, Hubspot, a third-party marketing vendor, confirmed a bad actor within their company gained access to Swan client marketing data.

Read Cory’s email to clients in the attached screenshots for details.

We’ll keep you updated. pic.twitter.com/qtXVk5AOW8

— Swan Bitcoin (@SwanBitcoin) March 19, 2022

They also described the size of the damage with comforting words “We use Hubspot for limited client communication and marketing data. We do not use Hubspot to store financial information, transactions, or other sensitive personal or financial information.” So, nothing to see here, right?

Let’s look at BlockFi, the company describes the situation in more dramatic terms. “To be clear, BlockFi’s internal systems and client funds are safeguarded and were not impacted. We can also confirm that BlockFi account passwords, government-issued ID numbers and social security numbers were never stored on Hubspot.”

Here are steps to protect your online presence from third-party bad actors: pic.twitter.com/tOKf16wOuf

— BlockFi (@BlockFi) March 19, 2022

And they don’t downplay the damage so much:

“As part of Hubspot being used for CRM and marketing purposes, BlockFi stored data that included name, email, and phone number for the majority of our clients. We are working with Hubspot as they continue their investigation to understand the full scope of impact.”

Neither does NYDIG, who ended their press release with a call to action for clients:

“To protect yourself, it is important that you exercise extra vigilance and care when reviewing or responding to emails, text messages, and phone calls, particularly those related to NYDIG.”

What Are Unchained Capital, Swan Bitcoin, NYDIG, And BlockFi Doing About It?

To answer this, we quote Swan’s Cofounder Yan Pritzker, who tweeted:

“We have been working round the clock since the incident with procedures including a data scrub, termination of further data to 3rd parties and complete audit. We will put out a comprehensive plan in the next week which will include moving away from using vendors for email.”

Startups rely on 3rd parties because it would be impossible to get a company off the ground if you build everything yourself. We chose vendors with extremely high standards. Hubspot had soc 2 type ii certification, for example. But it’s clearly time to take this in house.

— Yan Pritzker 🦢 (@skwp) March 20, 2022

And, since all the company’s responses have been similar, we hope their security procedures are similar also. However, a few burning questions remain. Were these companies targeted? Were the bad actors precisely looking for the information they got? Will we hear about these leaks in the future, connected to a bigger story? 

Related Reading | Bitcoin Firm NYDIG Gets $200m Injection from Morgan Stanley, Soros

If all of the companies would’ve been using just one service, that would be one thing. But both ActiveCampaign and Hubspot? On the same day? Targeting four bitcoin-related companies? There might be more to this story.

Featured Image by National Cancer Institute on Unsplash | Charts by TradingView
Share63Tweet39Send
GentrySTACK

GentrySTACK

Related Posts

Republicans criticize Biden for waiting to shoot down Chinese balloon

February 5, 2023

Israeli judicial reform legislation won’t be halted, justice minister says

February 5, 2023

FTX Asks Politicians Who Received Bankman-Fried Donations to Return Money

February 5, 2023

At least 24 dead in Chile as wildfires expand; foreign help on the way

February 5, 2023

Italy sounds alarm on large-scale computer hacking attack

February 5, 2023

Strikes against pension reforms to disrupt French rail and air traffic on Tuesday

February 5, 2023

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Search

No Result
View All Result
  • Trending
  • Comments
  • Latest

Is The Ethereum Merge About To Have A Confirmed Delay?

April 15, 2022

Data Leak At Unchained Capital, NYDIG, Swan & BlockFi. At The Same Time

March 21, 2022

Fantom Foundation Responds To Andre Conje’s Departure

March 6, 2022

The Andy Milonakis NFT Show, EP. 20 – Goat Soup’s Dark Night Of The Soul

April 26, 2022

IRA Financial Breach: Hackers Snatch $36 Million From US-Based Fintech Startup

0

Bitcoin Hash Rate Balloons To Record High — Will Price Go Up As Well?

0

Ethical Blockchain: Are Crypto, NFTs And DeFi Bad For The Environment? Here’s Why They’re Not

0

Mexican Billionaire Says It Again: Buy Bitcoin Today — And Thank Him Later?

0

Market Strategist Predicts Gold Will Be the Top Performer in 2023 Over Cryptocurrencies and Equities

February 5, 2023

Op-ed: On Bitcoin and why there is no second best – Part 2

February 5, 2023

Republicans criticize Biden for waiting to shoot down Chinese balloon

February 5, 2023

Israeli judicial reform legislation won’t be halted, justice minister says

February 5, 2023

Categories

  • Binance (49,842)
  • Bitcoin (93,218)
  • Business News (98,684)
  • Cardoso (41,238)
  • Crypto News (49,094)
  • Dogecoin (41,238)
  • Ethereum (41,614)
  • Market News (86,452)
  • NFT X Metaverse (41,238)
  • Other alt coins (41,284)
  • Others (2)
  • Shiba in (41,238)
  • Technology News (85,878)

Coin Tori is the #1 Crypto and business blog you can always trust to feed you with the necessary infomation.

Facebook Twitter Linkedin Instagram

Categories

  • Business News
  • Crypto News
  • Technology News
  • Bitcoin
  • Binance
  • Cardoso
  • Other Alt Coin
  • Dogecoin
  • Ethereum
  • NFT X Metaverse
  • Shiba in
  • Market News
  • Others

Tool

  • Crypto Table
  • Exchage Rate
  • Currency Converter

All right reserved - Cointori

Designed By Gentry Stack

We use cookies on our website to give you the most relevant experience by remembering your preferences and repeat visits. By clicking “Accept All”, you consent to the use of ALL the cookies. However, you may visit "Cookie Settings" to provide a controlled consent. Read More
Cookie SettingsAccept All
Manage consent

Privacy Overview

This website uses cookies to improve your experience while you navigate through the website. Out of these, the cookies that are categorized as necessary are stored on your browser as they are essential for the working of basic functionalities of the website. We also use third-party cookies that help us analyze and understand how you use this website. These cookies will be stored in your browser only with your consent. You also have the option to opt-out of these cookies. But opting out of some of these cookies may affect your browsing experience.
Necessary
Always Enabled
Necessary cookies are absolutely essential for the website to function properly. These cookies ensure basic functionalities and security features of the website, anonymously.
CookieDurationDescription
cookielawinfo-checkbox-analytics11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Analytics".
cookielawinfo-checkbox-functional11 monthsThe cookie is set by GDPR cookie consent to record the user consent for the cookies in the category "Functional".
cookielawinfo-checkbox-necessary11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookies is used to store the user consent for the cookies in the category "Necessary".
cookielawinfo-checkbox-others11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Other.
cookielawinfo-checkbox-performance11 monthsThis cookie is set by GDPR Cookie Consent plugin. The cookie is used to store the user consent for the cookies in the category "Performance".
viewed_cookie_policy11 monthsThe cookie is set by the GDPR Cookie Consent plugin and is used to store whether or not user has consented to the use of cookies. It does not store any personal data.
Functional
Functional cookies help to perform certain functionalities like sharing the content of the website on social media platforms, collect feedbacks, and other third-party features.
Performance
Performance cookies are used to understand and analyze the key performance indexes of the website which helps in delivering a better user experience for the visitors.
Analytics
Analytical cookies are used to understand how visitors interact with the website. These cookies help provide information on metrics the number of visitors, bounce rate, traffic source, etc.
Advertisement
Advertisement cookies are used to provide visitors with relevant ads and marketing campaigns. These cookies track visitors across websites and collect information to provide customized ads.
Others
Other uncategorized cookies are those that are being analyzed and have not been classified into a category as yet.
SAVE & ACCEPT
bitcoin
Bitcoin (BTC) $ 22,902.14 2.31%
ethereum
Ethereum (ETH) $ 1,619.56 3.43%
tether
Tether (USDT) $ 0.999955 0.07%
bnb
BNB (BNB) $ 326.53 1.16%
usd-coin
USD Coin (USDC) $ 1.00 0.02%
xrp
XRP (XRP) $ 0.39898 4.34%
binance-usd
Binance USD (BUSD) $ 1.00 0.04%
cardano
Cardano (ADA) $ 0.386712 4.42%
dogecoin
Dogecoin (DOGE) $ 0.091775 6.23%
okb
OKB (OKB) $ 44.13 6.16%
  • Home
  • Currency Converter
  • Business News
  • Crypto News
  • Binance
  • Bitcoin
  • Cardoso
  • Dogecoin
  • Ethereum
  • NFT X Metaverse
  • Other alt coins
  • Shiba in
  • Market News
  • Others
  • Technology News
Menu
  • Home
  • Currency Converter
  • Business News
  • Crypto News
  • Binance
  • Bitcoin
  • Cardoso
  • Dogecoin
  • Ethereum
  • NFT X Metaverse
  • Other alt coins
  • Shiba in
  • Market News
  • Others
  • Technology News