Phishing attack leads to Transak data breach

Updated on 21/10/2024

21/10/2024

Transak, a Web3 payment infrastructure provider used by several cryptocurrency platforms, has released a statement reporting a security incident that affected 11.4% of its users, corresponding to some 92,000 customers.

The company's investigation has revealed that an unauthorised attacker gained access to an employee's laptop through a social engineering phishing attack, using the stolen credentials to access the system of an external provider contracted for document scanning and verification services by Transak.

Among the information leaked from the provider are names, dates of birth, identification documents and media files of Transak users. The company has shared an update on the incident, providing guidelines on how to strengthen the security of its platform, as well as information on the process for notifying customers and partners of the incident.

References

21/10/2024

transak.com

Transparency and Action: Transak’s Response to a Recent Security Incident
21/10/2024

es.cointelegraph.com

Transak sufre filtración de datos exponiendo a 92,000 usuarios
22/10/2024

infosecurity-magazine.com

Phishing Attack Impacts Over 92,000 Transak Users
22/10/2024

cybersecuritynews.com

Crypto Payment Firm Transak Hit by Data Breach After Employee’s Laptop Hack
23/10/2024

transak.com

Update on Transak Security Incident

Etiquetas