The online broker Robinhood acknowledged a data breach of user personal data. The incident occurred on November 3, the company said in a blog post.
\n\n
\”A third party unauthorizedly gained access to a limited amount of personal information of some of our customers,\” the company said in a statement.
\n\n
Based on the investigation, the firm believes that Social Security numbers and credit card data were not disclosed and that none of the users suffered financial losses.
\n\n
According to the statement, the attackers used social engineering techniques against a member of the support staff and gained access to some of the service’s systems.
\n\n
The company determined that the attackers obtained a list of email addresses for about five million people and full names for another group of about two million users.
\n\n
In 310 accounts, additional personal information was compromised, including name, date of birth and mailing address. The hackers obtained a larger set of data for 10 users in that group.
\n\n
After the attack was contained, the attackers demanded a ransom, Robinhood said.
\n\n
The company contacted law enforcement authorities and continued the investigation in cooperation with the cybersecurity firm Mandiant.
\n\n
In October, launched a 24/7 telephone-support service, Robinhood noted.
\n\n
Follow ForkLog’s news on Facebook.