Pages:
Author

Topic: Coinmarketcap hacked - page 2. (Read 461 times)

mk4
legendary
Activity: 2870
Merit: 3873
Paldo.io 🤖
October 24, 2021, 11:31:13 PM
#16
CZ is denying the allegations, stating that it's only FUD.

No comment on this because I fortunately don't have a CMC account lol.



https://twitter.com/cz_binance/status/1451855293059584000
legendary
Activity: 2576
Merit: 1860
October 24, 2021, 08:14:18 PM
#15
Binance' reputation will not be affected and they will not do anything unless there is serious competition from other sites.

I'm not sure about this. There have been signs that Binance is not giving their best, or perhaps spending enough, in terms of security. Binance itself was hacked and tens of millions in Bitcoin were taken. More than a year later, Binance figured in another controversy when its customer's KYC data were leaked. Personal information of about 60,000 Binance users was compromised. And now, Binance-owned coinmarketcap is also hacked.

Binance's reputation, at least in terms of security, will never be the same again. And they should certainly do something about it. This is not about competition against other sites offering similar services. This is about their security.
legendary
Activity: 1596
Merit: 1288
October 24, 2021, 08:10:15 AM
#14
Can someone tell me why emails are not encrypted or kept more securely, or what makes it more difficult to hack a password than an email?
this hack is not important because many will not be affected by the hack, beginners often do not notice the registration button and most of those who create accounts intend to track their favorite currencies and it will not be easy to deceive them with phishing links.

Binance' reputation will not be affected and they will not do anything unless there is serious competition from other sites.
staff
Activity: 3500
Merit: 6152
October 24, 2021, 05:45:02 AM
#13
Here we go...



I received this email a couple of hours ago. Maybe someone here with a CMC account could confirm that they have received the same thing?
legendary
Activity: 2870
Merit: 7490
Crypto Swap Exchange
October 24, 2021, 04:53:45 AM
#12
Since CMC is owned by Binance, this reflect how poor Binance manage security of their service (especially if it's not their main service).

Apparently, only the email addresses were leaked, so your account and diamonds are safe but you should still be cautious, you might start getting some phishing attacks sent to your email.

Not if you're also victim of different data leak which leak the password and use same/very-similar password on different website.
copper member
Activity: 2996
Merit: 2374
October 23, 2021, 09:44:24 PM
#11
I created an account using a temporary email, but I assume that their database is large and it will cause a lot of losses because beginners trust the emails that are sent to them.

Quote
CoinMarketCap has become aware that batches of data have shown up online purporting to be a list of user accounts. While the data lists we have seen are only email addresses (no passwords),
Source  --> https://haveibeenpwned.com/PwnedWebsites#CoinMarketCap

The weirdest part is this quote, which means they don't know what exactly happened, and just because the password hasn't been hacked doesn't mean that customer data is safe.
I also didn't notice any new security update they made.
If all that is for sale are email addresses and not passwords (hashes), it is probably safe to assume that passwords were not compromised. Although you should use a unique and distinct password for every account you have.

It is possible that the attacker used some type of vulnerability that will leak information about if a specific email address is associated with an existing account. The attacker could then attempt to use whatever method leaks this information by trying a list of known email addresses known to be associated with bitcoin users against this method.
hero member
Activity: 3038
Merit: 634
October 23, 2021, 06:00:05 PM
#10
My friend sent me a picture of email that ihavebeenpwned emailed him that his account in CMC got pawned by hackers and he don't know what to do. I don't have any account made on CMC but didn't know that there's sort of diamonds there.

I just told him to change his passwords rightaway after receiving that image of notification to me.
hero member
Activity: 2352
Merit: 905
Metawin.com - Truly the best casino ever
October 23, 2021, 05:58:40 PM
#9
The weirdest part is this quote, which means they don't know what exactly happened, and just because the password hasn't been hacked doesn't mean that customer data is safe.
I also didn't notice any new security update they made.

I never wanted to create an account with them because they are offering service for free so we can't expect our emails to be safe there. Anyway users should be careful now with the phishing attacks it may not happen immediately but since the data like email exposed we can expect the scammers use this to promote scams or steal crypto funds.
You can check different temprorary email websites, some of them aren't blacklisted. Also, you can create brand new acount on Gmail without much additional (and correct) information and use it for cases where you don't want to use your primary email. I guess people rarely use only single email, right? Idk...

That's what happens when you spend too much time bragging on Twitter and don't spend money on security for your infrastructures.
I'm kidding but it's somewhat true for many companies (crypto or not).

Many companies neglect investments in security, even when they operate in sensitive business areas (like finance for example).
Guess why many (too many) crypto platforms have been hacked over the years? Then guess why those that invest literally millions of dollars have never had any problems?If you don't take proactive measures, you will have problems sooner or later

I don't know when this incident happened, but the fact that they didn't even make an announcement, or even send an email to their user base, says a lot about how they consider the members using their service
Coinmarketcap is owned by Binance, right? I think it may have some temporary effect on their reputation but people will forget it very soon. Btw coinmarketcap isn't a financial service provider and seems they didn't care much about that but it's funny when you pay enormous amount of money to acquire CMC but do nothing to improve the security.
Like you said, that truly shows how they treat the users but again, people forget things easily. It didn't have any influence on BNB coin btw.
copper member
Activity: 2940
Merit: 4101
Top Crypto Casino
October 23, 2021, 01:32:31 PM
#8
That's what happens when you spend too much time bragging on Twitter and don't spend money on security for your infrastructures.
I'm kidding but it's somewhat true for many companies (crypto or not).

Many companies neglect investments in security, even when they operate in sensitive business areas (like finance for example).
Guess why many (too many) crypto platforms have been hacked over the years? Then guess why those that invest literally millions of dollars have never had any problems?If you don't take proactive measures, you will have problems sooner or later

I don't know when this incident happened, but the fact that they didn't even make an announcement, or even send an email to their user base, says a lot about how they consider the members using their service
legendary
Activity: 3472
Merit: 3507
Crypto Swap Exchange
October 23, 2021, 01:18:40 PM
#7
Thanks for the heads-up, a wasn't really aware of this. I can't recall if I have created an account there but I have clearly remembered that I had not bought anything from there. So I think I am safe from losing something except email. I am not sure why but for a few days I have been receiving a few spam mail including a few files to download, the title is something like free bitcoin, and so on. I am pretty sure they are all phishing attempts or included malware, so I just delete the mail without checking anything since I am not familiar with the mail address. I think everyone should be careful from such as mail.

so well I got a lot of some weird emails at once. as if I had suddenly subscribed to a newsletter from a bunch of porn sites and investment opportunities. one of my alternate email addresses, but the last couple of days I get over 100 spam emails daily.

maybe this is not to worry about, as far as I can see no one used them seriously, nor did they have any great value there. but if we know that CMC is owned by Binance, it seems much more serious if their developers have failed to make a good enough protection.
legendary
Activity: 2394
Merit: 2223
Signature space for rent
October 23, 2021, 12:24:19 PM
#6
Thanks for the heads-up, a wasn't really aware of this. I can't recall if I have created an account there but I have clearly remembered that I had not bought anything from there. So I think I am safe from losing something except email. I am not sure why but for a few days I have been receiving a few spam mail including a few files to download, the title is something like free bitcoin, and so on. I am pretty sure they are all phishing attempts or included malware, so I just delete the mail without checking anything since I am not familiar with the mail address. I think everyone should be careful from such as mail.
hero member
Activity: 2366
Merit: 793
Bitcoin = Financial freedom
October 23, 2021, 08:42:56 AM
#5
The weirdest part is this quote, which means they don't know what exactly happened, and just because the password hasn't been hacked doesn't mean that customer data is safe.
I also didn't notice any new security update they made.

I never wanted to create an account with them because they are offering service for free so we can't expect our emails to be safe there. Anyway users should be careful now with the phishing attacks it may not happen immediately but since the data like email exposed we can expect the scammers use this to promote scams or steal crypto funds.
legendary
Activity: 2702
Merit: 4002
October 23, 2021, 08:06:40 AM
#4
I created an account using a temporary email, but I assume that their database is large and it will cause a lot of losses because beginners trust the emails that are sent to them.

Quote
CoinMarketCap has become aware that batches of data have shown up online purporting to be a list of user accounts. While the data lists we have seen are only email addresses (no passwords),
Source  --> https://haveibeenpwned.com/PwnedWebsites#CoinMarketCap

The weirdest part is this quote, which means they don't know what exactly happened, and just because the password hasn't been hacked doesn't mean that customer data is safe.
I also didn't notice any new security update they made.
staff
Activity: 3500
Merit: 6152
October 23, 2021, 06:31:19 AM
#3
Didn't know you can create an account there. What the accounts are for on their platform? (Never visited their site for quite time)

You can use accounts to make a crypto watchlist and keep track of your portfolio, but people were mainly using them to claim diamonds and buy rewards (NFTs, vouchers, etc.). It's basically the same concept that Coingecko introduced some time ago with candies.

copper member
Activity: 2142
Merit: 1305
Limited in number. Limitless in potential.
October 23, 2021, 05:50:48 AM
#2
Didn't know you can create an account there. What the accounts are for on their platform? (Never visited their site for quite time)
staff
Activity: 3500
Merit: 6152
October 23, 2021, 05:36:46 AM
#1
https://cointelegraph.com/news/coinmarketcap-hack-reportedly-leaks-3-1-million-user-email-addresses

Just a heads-up for anyone with an account there. Apparently, only the email addresses were leaked, so your account and diamonds are safe but you should still be cautious, you might start getting some phishing attacks sent to your email.
Pages:
Jump to: