Cryptocurrency
DeFi
Exchanges
Stablecoins
NFTs
Wallets
Bitcoin
Ethereum
Tokens
ICOs
IEOs
Technology
Crypto
Banking
Supply Chain
Security
Healthcare
Mining
AI
Advertising
Gaming
Retail
Education
Analytics
Hosting
Business
Partnerships
Investments
Adoption
Acquisitions
Conferences
IPOs
Legal
Lawsuits
Patents
Politics
Fraud
Research
Guides
Opinion
Cryptocurrency
Technology
Business
Legal
Politics
Fraud
Research
Guides
Opinion
The Chain Bulletin logo

Liquid Suffers Security Breach, User Data Possibly Exposed

  • The exchange has said that its customers’ funds remain safe, and that the attacker was not able to access its MPC-based and cold storage crypto wallets.
  • Liquid customers were warned to be on the lookout for phishing attempts, as the intruder had access to data such as users’ emails, names and addresses.
by Krasimir Buchvarov November 18, 2020, 2:40 PM

Image from Shutterstock

Users of cryptocurrency exchange Liquid could have had their data exposed in a recent security incident, the firm warned in a security notice on 18 November.

According to the announcement, the incident occurred on 13 November, when Liquid’s domain hosting provider incorrectly transferred control of one of the “core domain names” to an unknown actor. Shortly after the firm was alerted of the situation, it took immediate actions to prevent further breaches, and performed an infrastructure review to asses the extent of the security breach.

During the time of the incident, the intruder was granted enough access to change DNS records and take control of a “number of internal email accounts”, which allowed them to “partially compromise” Liquid’s infrastructure and access stored documents. It remains unknown if the actor was able to further access user’s KYC data, such as IDs and photos. The exchange’s CEO, Mike Kayamori, said in a statement:

“We do not believe there is an immediate threat to your account due to our use of strong password encryption. Nevertheless, we recommend that all Liquid customers change their password and 2FA credentials at the earliest convenience.”

The exchange warned its customers to be on the look out for possible phishing attempts, as the intruder may have been able to obtain data such as users’ emails, names, addresses and encrypted passwords.

The firm’s “comprehensive review” of the infrastructure confirmed that its clients’ funds were safe and accounted for, and that its MPC-based and cold storage crypto wallets were uncompromised.

Discussion
Related Coverage
Unibot to Compensate Users Affected by Exploit
  • Popular Telegram bot Unibot, which is used to snipe trades on Uniswap, became a victim of a token approval exploit earlier today, when it was switching to a new router.
  • After confirming the exploit, Unibot assured users that their keys and wallets were safe, and that the project will compensate all affected users.
October 31, 2023, 3:01 PM
unlock

Shutterstock

Balancer Exploited After Giving Warning
  • DeFi protocol Balancer confirmed it was exploited almost a week after disclosing a critical vulnerability affecting several of its boosted pools.
  • The platform did its best to mitigate some of the risks but was unable to pause the affected pools, and an estimated $980,000 in DAI were stolen in an attack.
Kroll Data Breach Compromises FTX, BlockFi Customer Information
  • A cyber security incident at bankruptcy service provider Kroll has resulted in the exposure of “non-sensitive” customer data for claimants involved in the FTX and BlockFi cases.
  • Both companies confirmed that account passwords, systems, and funds remained safe, but warned customers to be on the lookout for phishing scams.