Security: Personal Data for Thousands of Ledger and Trezor Wallet Users Allegedly Leaked

Personal information for users of popular crypto hardware wallets, Trezor and Ledger, as well as, investment platform, BankToTheFuture, have reportedly been stolen by the same person(s) behind the infamous Ethereum forum hack in late 2016.

According to a Sunday update from data breach service, Under The Breach, the hacker had acquired these personal data via an exploit on popular eCommerce solution, Shopify. At the same time, there may as well be many other underground breaches associated with the latest development.

The hacker reportedly has access to personal information such as name, full address, phone number, and email for 41488 Ledger users, 4000 KeepKey users and over 27,000 Trezor users, while at the same time boasting an entire SQL database for BankToTheFuture.

Other allegedly affected cryptocurrency-related companies include Bitbond (27k+ users), Bitso (7k+ users), Coinigy (520 users).

For the basics, cybercriminals notably can use such information to carry out phishing attacks and other kinds of malicious attempts to steal funds or credit card information from cryptocurrency holders.

Trezor and Ledger Denies Data Breach

Following the release of the information, both Ledger and Trezor have published an update in denial of the data breach, albeit revealing that their respective teams are still investigating the situation.

Ledger uses Shopify for its eCommerce sales, and although Trezor doesn’t, any of its large resellers using the eCommerce solution may as well leave users to the possibility of data theft.

In a similar recent development, Coinfomania reported an email address leak that affected traders on popular cryptocurrency derivatives exchange, BitMEX.

NordFX