Gemini crypto exchange announced this week that customers were targeted in phishing campaigns after a threat actor collected their personal information from a third-party vendor.
The notification comes after multiple posts on hacker forums seen by BleepingComputer offered to sell a database allegedly from Gemini containing phone numbers and email addresses of 5.7 million users.
The Gemini product security team published a short notice that an unnamed third-party vendor suffered an “incident” that allowed an unauthorized actor to collect email addresses and incomplete phone numbers belonging to some Gemini customers.
As a result of the breach, customers of the crypto exchange received phishing emails. The goal of the attacker has not been disclosed but such access to accounts and financial information is typically what threat actors are after.
