Celsius Network users targeted by phishing campaign

On April 14, Celsius Network, the cryptocurrency-lending service, came under a hacking attack. Unknown actors, posing as the company, sent SMS messages and emails to some customers demanding the disclosure of confidential information.

An unauthorized party gained access to an external backup mailing system containing the email addresses of a subset of customers.

The aim of the messages was to harvest confidential information and seed phrases to access wallets outside Celsius.

Founder and Celsius CEO Alex Mashinsky said that the platform’s server systems had not been breached and that all user funds are safe.

“A quick response by the security team helped minimise the impact on the Celsius community,” he added.

Representatives from Celsius urged recipients not to click unknown links and reminded that the company never requests private keys, passwords, or PINs.

Security experts are investigating the incident to determine where the leak originated.

“We know that customers who had not registered an email address or a phone number with Celsius also received fraudulent messages at those contact details, so we believe the data were collected from external data sources,” Celsius said.

The project team pledged to keep people updated on the investigation.

Earlier in March, the blockchain platform Roll was hacked for 3,000 ETH.

Follow ForkLog news on Telegram: ForkLog Feed — full news coverage, ForkLog — the most important news, infographics and opinions.