Cryptocurrency exchange Gemini reported a data breach following a series of phishing attacks. The platform says client funds are safe.
“Some Gemin clients became targets of phishing campaigns, which, in our view, are the result of an incident that occurred at a third-party vendor,” the exchange said.
According to the press release, unauthorized parties gained access to users’ email addresses and partial phone numbers. Account data or internal systems were not compromised.
Clients were advised to enable two-factor authentication or to use hardware keys such as Google Titan Key or YubiKey to protect their accounts.
The exchange did not disclose the scale of the breach. According to Cointelegraph, the incident affected more than 5.7 million users. A database dump with a similar number of records has already been posted on specialized forums.
Gemini disclosed the data breach on December 14, but reports of attacks had appeared online several weeks earlier. For example, one user received a ‘targeted phishing email’ to the email address tied exclusively to the Winklevoss twins’ Gemini platform.
Earlier in November, the Canadian crypto exchange Coinsquare acknowledged a data breach.
Follow ForkLog’s bitcoin news on our Telegram channel — cryptocurrency news, prices and analysis.