Some vital information of clients on Trezor, Keepkey and Ledger has been compromised by a hacker who has offered them up for sale.
The hacker is said to be the one who hacked Ethereum.org and has done it again on these three important crypto hard wallets.
If the hacker has actually succeeded, he must be having more than 80,000 names, addresses, phone numbers and email addresses from the users of these wallets. Fortunately, the database attacked doesn’t have passwords.
The hacker also has in his custody the SQL database belonging to BnkToTheFuture.
Ledger and Trezor Databases Said to be Hacked
Less than 24 hours ago, a cybercrime monitoring website, Under the Breach, discovered that Ledger and Trezor databases have been compromised when a hacker presented some of the information they are in custody of for sale.
The number of basic info totals over 80,000 from three wallets as follows: 41,500 from Ledger, 14,000 from KeepKey and 27,100 from Trezor.
According to investigations from chats posted on Twitter, an attack on the ecommerce website, Shopify, was how the hacker succeeded.
Hacker includes more crypto info for sale
The hacker has now listed for sale, databases gathered from 18 cryptocurrency exchanges and forums as well as email addresses from two crypto tax platforms.
Korbit’s SQL is among the database for sale. Korbit is an exchange company based in Korea that has up to 4500 users. Three databases from Bitso, a trading platform in Mexico, is also included. Everything about users on Blockcypher, Nimirum and Plutus was also hacked; this includes their passwords.
The hacker wants to be super rich from this evil. He said: “Don’t offer me low dollar, only big money allowed.”
Hackers are interested in KYC platforms
There was another report last week from BlockFi which hinted that a SIM-swap led to the compromise of customers’ basic information including their date of birth, physical addresses, email addresses and full names. Fortunately, monies were not touched.
In April, hackers also broke into Etana’s databases where they stole basic information of clients. They were also not interested in stealing their money.