FTX warns of user data leak

The FTX exchange, undergoing bankruptcy procedure, reported a leak of non-confidential data of some clients through the restructuring agent Kroll.

According to the platform, the firm faced a “cybersecurity incident”.

“Kroll is directly notifying those affected about steps they can take to protect themselves. FTX account passwords were not managed by Kroll, and the exchange’s own systems were not affected,” the statement said.

The exchange warned customers about possible attempts by scammers posing as participants in the bankruptcy case.

On-chain researcher ZachXBT said that FTX users have already begun receiving phishing emails from scammers. Clients of the collapsed platform are assured of the ability to withdraw ERC-20 assets to an external wallet, offering to link it.

According to The Block, attackers gained control over the mobile phone number of a Kroll employee. This gave them access to information from the company’s cloud storage. The files contained data of some FTX clients, including names, email addresses and balances on the exchange.

Also, undergoing restructuring of the crypto-lending firm BlockFi, the Kroll breach affected data and its users.

“For clarity: BlockFi’s internal systems and client funds were not harmed,” the company said.

In June, BlockFi creditors proposed to the court liquidate the firm. New leadership at FTX, by contrast, expects a relaunch of the exchange.