Trusted

Celsius Data Breach Could Spell Further Misery for Users

2 mins
Updated by Ryan Boltman
Join our Trading Community on Telegram

In Brief

  • A list of email addresses belonging to Celsius customers has been leaked to a third party.
  • The emails which were held by Customer.io were leaked earlier this month.
  • Despite this, Celsius customers only learned of the data breach on Thursday.
  • promo

Celsius has confirmed that a list of client email addresses was stolen by an employee of Customer.io, increasing the risk of phishing attacks by malicious third parties.

According to Celsius, the email addresses were held at Customer.io for the management of marketing campaigns, and for that reason, no account details were linked to the data. Celsius was quick to downplay any potential risks from the theft, claiming the leak did not “present any high risks to our clients.”

Despite Celsius’ assertions, the leaked information will open customers to additional threat vectors when they can least afford it. On June 13 Celsius suspended all customer withdrawals blaming “extreme market conditions.”  

Another fine mess

The latest slice of misery to befall Celsius users is by no means unique to the beleaguered lender. 

On July 1 an employee of Customer.io accessed the email database for OpenSea. They then leaked that data to an outside party. It now appears that the same former employee was behind the Celsius breach.

On Thursday Celsius sent an email to its customers to confirm: “Customer.io informed us that one of their employees had accessed a list of Celsius client email addresses from Customer.io’s platform, along with lists from several of their clients, and transferred these lists to a third-party bad actor. Customer.io confirmed that, other than the identified email addresses, no other Celsius client data was accessed or taken by the employee.”

Despite this, questions about the breach and the role Celsius played remain. According to the email Celsius first identified that there was a possible issue on June 30. At that time they removed all Celsius email data held by Customer.io.

Customer.io confirmed that one of its employees had accessed the Celsius email database on July 8. The obvious question is why did Celsius wait until July 28 to inform their customers about the breach?

Not impressed

The reaction to the latest calamity to befall Celsius was less than positive.

Richard Heart summed up the general feeling when he tweeted, “Celsius. First, they lose your money, then they lose your data.”

Heart went on to label Celsius CEO Alex Mahinksy as “scum.”

On June 12, the day before Celsius suspended withdrawals, Mahinsky took to Twitter to call out “FUD and misinformation” on the project. The CEO went on to add, “do you know even one person who has a problem withdrawing from Celsius?”

Mahinsky stopped posting to the social media platform on June 15.

What do you think about this subject? Write to us and tell us!

Top crypto projects in the US | October 2024
Coinbase Coinbase Explore
Coinrule Coinrule Explore
3Commas 3Commas Explore
Uphold Uphold Explore
Chain GPT Chain GPT Explore
Top crypto projects in the US | October 2024
Coinbase Coinbase Explore
Coinrule Coinrule Explore
3Commas 3Commas Explore
Uphold Uphold Explore
Chain GPT Chain GPT Explore
Top crypto projects in the US | October 2024

Disclaimer

In adherence to the Trust Project guidelines, BeInCrypto is committed to unbiased, transparent reporting. This news article aims to provide accurate, timely information. However, readers are advised to verify facts independently and consult with a professional before making any decisions based on this content. Please note that our Terms and ConditionsPrivacy Policy, and Disclaimers have been updated.

BIC_userpic_sb-01.jpg
Robert D Knight
Robert D Knight is a journalist and copywriter who has specialized in crypto for over four years. His varied experience includes freelancing, in-project contracts, agency work, and PR, giving him a holistic view of the blockchain industry.
READ FULL BIO
Sponsored
Sponsored