1. Home
  2. Security Incident

Security Incident

Crypto Exchange M2 Confirms $13.7 Million Breach, Says Issue Resolved Within 16 Minutes

Crypto Exchange M2 Confirms .7 Million Breach, Says Issue Resolved Within 16 MinutesM2 Exchange recovered from a $13.7 million security breach within 16 minutes. A security firm said the incident highlights the growing vulnerability of crypto exchanges. Normal Service Restored The United Arab Emirates-based cryptocurrency exchange, M2 Exchange, said it swiftly resolved a security incident on Oct. 31 that involved $13.7 million. The exchange said customer funds […]

Marketing Veteran: Web3 Gaming Needs Collaboration, Not Competition

Okx Acknowledges Security Incident Involving Judicial Documents Forgery

Okx Acknowledges Security Incident Involving Judicial Documents ForgeryOkx, a Seychelles-based cryptocurrency exchange, clarified the information regarding a recent security incident that allowed unidentified criminals to take control of the accounts of a few customers, draining these. In a statement, Okx stressed that a third party had forged judicial documents and obtained user data, but that the users involved in this incident had […]

Marketing Veteran: Web3 Gaming Needs Collaboration, Not Competition

Bitfinex users fall for ‘minor’ phishing attack after employee gets hacked

Bitfinex stressed its systems weren’t compromised and no customer funds were lost.

Cryptocurrency exchange Bitfinex said it suffered a “minor” information security incident after one of its customer support agents was hacked earlier in the week (Oct. 30 — Nov. 5).

It led to a spree of phishing attacks against Bitfinex users but little damage was done, the firm explained in a Nov. 4 statement.

“A small portion of our customer support boards, which held partial, incomplete and stale information was accessed by an individual or group, through the phishing of a customer support agent.”

Fortunately, the customer support agent didn’t have “senior permissions” and therefore had limited access to supporting tools and help desk tickets, the firm added.

Bitfinex stressed its systems weren’t compromised and no customer funds were lost.

“No server, wallet or database infrastructure was accessed.” Bitfinex added:

“At no time were customer assets on the platform at risk, nor was password information accessible. Most of the affected customer accounts were empty or inactive.

While Bitfinex said the issue is now “resolved,” they’re still reviewing the incident, the compromised information and are reaching out to affected customers.

The firm notified law enforcement of the issue and “will be working with investigation authorities” to track down the perpetrator behind the phishing attack.

“We have a strong track record of securing successful convictions against individuals who have attempted to attack our operations in the past,” Bitfinex iterated.

The incident happened despite Bitfinex regularly reviewing its security procedures and mandating all employees to undertake cybersecurity training.

Related: Crypto phishing scams: How users can stay protected

Bitfinex was founded in Hong Kong in 2012. Jean-Louis van der Velde has served as the firm’s CEO since 2013.

Bitfinex is ranked 17th in CoinGecko’s “Trust Score” index among all cryptocurrency exchanges. It saw over 800,000 visits on its platform over the last month.

Magazine: Deposit risk: What do crypto exchanges really do with your money?

Marketing Veteran: Web3 Gaming Needs Collaboration, Not Competition