Over 92554 Individuals Compromised as Cryptocurrency Payment Company Exposes Breach of Personal Information including Names Birth Dates Passports Drivers Licenses and Additional Data
A hacker has gained access to an employee’s laptop, putting tens of thousands of users at risk, according to US-based crypto payments firm, Transak. The security breach has impacted 92,554 users, with the attacker using a sophisticated phishing attack to gain unauthorized access. With the employee’s credentials, the hacker was able to log in to a third-party KYC vendor used by Transak for customer document scanning and verification services. This allowed the hacker to access personal information such as names, dates of birth, ID documents, and selfie photos and videos of some users who had completed the KYC process. However, Transak assures users that no financially sensitive information, including email addresses, phone numbers, passwords, credit card details, or Social Security Numbers, has been compromised. The firm emphasizes that its robust financial systems and non-custodial platform ensure user funds remain secure and unaffected by the attack. The affected users represent 1.14% of Transak’s customer base.