Reports confirm that notorious hackers have breached the vulnerability in BlockFi third-party vendors, Hubspot, compromising client data such as names, email addresses, and phone numbers.
In a March 21 announcement, New Jersey-based crypto financial institution BlockFi confirmed that hackers successfully gained access to its third-party vendors, Hubspot, compromising data such as names, email addresses, and phone numbers.
BlockFi’s proactive warning about the breach now aims to deter the intentions of perpetrators in repurposing the user data for fraudulent activities:
“Hubspot has confirmed that an unauthorized third-party gained access to certain BlockFi client data housed on their platform.”
Hubspot, a client relationship management platform and a third-party vendor for BlockFi, stored user data such as names, email addresses, and phone numbers. Historically, perpetrators have used such information for conducting phishing attacks and gaining access to accounts through user-provided passwords.
Regarding recent third-party data incident: pic.twitter.com/50z7IrQ1za
— BlockFi (@BlockFi) March 19, 2022
At the time of writing, BlockFi is conducting a thorough investigation of the overall impact of the data breach. Although the company has not identified the exact detail of the breach, it reassures all users that vital data was not compromised. In this case, BlockFi clarified that it had not stored data, including passwords, government-issued IDs, and social security numbers on Hubspot.
Moreover, the firm has confirmed that hackers did not access its internal system and client funds, arguing that the data breach remains limited to the third-party vendor, Hubspot.Buy Crypto Now
BlockFi Recommends Ways To Protect Data
The company has recommended four methods to help users protect their online presence from perpetrators. BlockFi is now advocating for good password hygiene, two-factor authentification (2FA), allowing list trusted applications, and vigilance against scammers.
Before summarizing, the company acknowledged that time is of the essence and are expediting their investigations to identify the extent of the breach:
“Additional information will be emailed to all impacted clients in the coming days.”
In the meantime, BlockFi advises all investors to be cautious of all company communication demanding urgency in requesting or changing personal detail such as passwords and wallet addresses.
Elsewhere, the recently launched non-fungible token (NFT) project “Rare Bears” was attacked over the weekend, resulting in a theft of nearly $800,000 in NFTs.