Cryptocurrency exchange Poloniex has enforced a password reset on users whose email addresses and passwords were leaked on Twitter.
In an email dated Dec. 30, the exchange said that "someone" posted a list of email addresses and passwords on Twitter and claimed that they could be used to log in to Poloniex accounts.
However, the exchange stated that "almost all of the email addresses listed do not belong to Poloniex accounts." For those that are associated with Poloniex, the exchange has forced a password reset.
"We promptly sent emails out to all affected users, requiring them to change their password," stated Poloniex's official Twitter account.
Poloniex recently dropped KYC requirements for withdrawals of up to $10,000 per day, allowing new users to register accounts with only verified email addresses and passwords. The exchange stopped serving U.S. users after its spin-off from Circle in October.
Following the email, Poloniex issued an updated statement on Jan. 2 claiming that there was in fact no data leak originating from the exchange.