1.5 Million Email Addresses Have Been Pwned From Cointracker Data Leak

A data leak on crypto and NFT tax service provider CoinTracker has exposed over 1.5 million records from underground. Now the Have-I-Been-Pointed project can add data to its own pool. There you can check if you yourself are affected.

Cointracker provides as a service the attention to connected cryptocurrency wallets and the professional preparation of sales and investments for tax purposes. The company said in a data leak notification As of early December, it only had access to crypto exchange accounts and public blockchain addresses.

data leak on service provider

The company said the data leak was part of a larger data breach at one of CoinTracker’s service providers. The company’s own database has never been infiltrated. E-mail addresses of Cointracker accounts were primarily captured.

Have-I-been-Point addedthat parts of telephone numbers can be found in the pool. This data is now in circulation from a total of 1,557,153 users. Interested parties can easily find out whether their own addresses are affected by this data leak Have-I-been-pwned home page trace.

effects of leakage

At first glance, there isn’t much that can be done with the captured data. However, this data is already associated with information: email addresses belonging to people who deal with cryptocurrencies and NFTs. So they obviously have purses.

This makes phishing attacks very easy. Cointracker therefore warns against checking the credibility of links in purported mails from providers before taking any action. Also, recipients should never share or confirm passwords or secret wallet seeds. Also, they should not sign wallet transactions directly from email. Lastly, CoinTracker recommends enabling two-factor authentication (2FA), which limits access to shared devices.

Such data leaks have now become a part of everyday life. For example, just this summer alone, the Have I Been Pwned project added more than 5 million records of Twitter users.

(DMK)