Attacker sends nearly 24,000 phishing emails derived from compromised CoinGecko third-party email platform

Quick Take

  • CoinGecko experienced a data breath through its third-party email marketing platform GetResponse on June 5.
  • The attacker exported nearly 2 million contacts from CoinGecko’s GetResponse account and then sent out 23,723 phishing emails from another GetResponse client’s account. 

Cryptocurrency data aggregator CoinGecko experienced a data breach through its third-party email marketing platform GetResponse on June 5.

The attacker exported nearly 2 million contacts from CoinGecko's GetResponse account after compromising a GetResponse employee's account, CoinGecko explained in a statement. The bad actor then sent 23,723 phishing emails from another GetResponse client's account. No malicious emails were sent from CoinGecko's domain.

While CoinGecko user accounts and passwords remained secure, the incident resulted in leaked data including users' names, emails, IP addresses and locations of email opens.

"We are actively investigating this situation with GetResponse and informing all affected users," CoinGecko said in the statement. "Additionally, we are thoroughly reviewing our security procedures and will look to enhance our security protocols in collaboration with our vendors."

In the meantime, CoinGecko recommends users exercise caution around emails claiming airdrops, avoiding clicking links or downloading attachments from unsolicited emails, and other security practices.

Earlier this year, a hacker compromised CoinGecko's X account and promoted a suspicious airdrop for the cryptocurrency GCKO, The Block previously reported.

The Block reached out to CoinGecko for comment on the June 5 data breach.


Disclaimer: The Block is an independent media outlet that delivers news, research, and data. As of November 2023, Foresight Ventures is a majority investor of The Block. Foresight Ventures invests in other companies in the crypto space. Crypto exchange Bitget is an anchor LP for Foresight Ventures. The Block continues to operate independently to deliver objective, impactful, and timely information about the crypto industry. Here are our current financial disclosures.

© 2024 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.

About Author

MK Manoylov has been a reporter for The Block since 2020 — joining just before bitcoin surpassed $20,000 for the first time. Since then, MK has written nearly 1,000 articles for the publication, covering any and all crypto news but with a penchant toward NFT, metaverse, web3 gaming, funding, crime, hack and crypto ecosystem stories. MK holds a graduate degree from New York University's Science, Health and Environmental Reporting Program (SHERP) and has also covered health topics for WebMD and Insider. You can follow MK on X @MManoylov and on LinkedIn.

Editor

To contact the editor of this story:
Jason Shubnell at
[email protected]