U.S. Markets open in 8 hrs 22 mins
  • S&P Futures

    3,902.00
    +4.25 (+0.11%)
     
  • Dow Futures

    31,241.00
    +39.00 (+0.12%)
     
  • Nasdaq Futures

    11,838.00
    -40.25 (-0.34%)
     
  • Russell 2000 Futures

    1,771.50
    -3.40 (-0.19%)
     
  • Crude Oil

    110.35
    +0.46 (+0.42%)
     
  • Gold

    1,845.10
    +3.90 (+0.21%)
     
  • Silver

    21.87
    -0.03 (-0.13%)
     
  • EUR/USD

    1.0562
    -0.0026 (-0.2429%)
     
  • 10-Yr Bond

    2.7870
    -0.0680 (-2.38%)
     
  • Vix

    29.43
    +0.08 (+0.27%)
     
  • GBP/USD

    1.2495
    +0.0020 (+0.1587%)
     
  • USD/JPY

    127.8500
    +0.0560 (+0.0438%)
     
  • BTC-USD

    30,073.91
    +708.86 (+2.41%)
     
  • CMC Crypto 200

    650.34
    -23.03 (-3.42%)
     
  • FTSE 100

    7,389.98
    +87.24 (+1.19%)
     
  • Nikkei 225

    26,739.03
    +336.19 (+1.27%)
     

Celsius Suffers Third-Party Data Breach, Customers Report Phishing Texts, Emails

·2 min read

Crypto lending service Celsius has discovered a data breach with one of its third-party service providers has exposed the personal information of its customers, an email sent to Celsius customers and shared with CoinDesk confirms.

Hackers gained access to a “third-party email distribution system” Celsius uses, according to the email. The hackers have used this information to send fraudulent emails and text messages to Celsius to trick them into revealing the private keys to their funds.

“On April 14, 2021, Celsius customers began reporting a fraudulent website claiming to be an official Celsius platform. We also became aware of some Celsius customers receiving SMS and email messages, that claimed to be official Celsius communication, linking to that website, and prompting recipients to enter sensitive information,” the email reads.

Related: Riksbank Says Sweden Could Have a Digital Central Bank Currency in 5 Years: Report

“An unauthorized party managed to gain access to a back-up third-party email distribution system which had connections to a partial customer email list. Once inside the system, this unauthorized party sent a fraudulent email announcement, of which we know some of the recipients to be Celsius customers.”

The team is still investigating how the hackers gained access to the phone numbers of Celsius’ clients, considering the breach occurred with an email management system.

Notably, Celsius clients report receiving phishing messages to phone numbers that they never provided to Celsius.

Celsius did not return CoinDesk’s request for additional comment.

Related: Robinhood Resolves Issues With Crypto Trading Amid Dogecoin Rally

Last spring, Celsius competitor BlockFi suffered a similar data breach, though by way of a hacker gaining access to an employee’s company accounts through a sim swap. Hardware wallet producer Ledger has also suffered leaks of its customer data. Such leaks can put users’ funds (not to mention their physical safety) at risk.

This is a developing story and will be updated.

Related Stories