Coingecko Data Breach: June 5 Incident Exposes User Information
On June 5, 2024, Coingecko experienced a significant data breach that compromised the personal information of nearly 2 million users. The breach originated from its third-party email platform, Getresponse.
Getresponse Email Platform Breach Impacts Coingecko Users
Coingecko detected unusual activity on its third-party email marketing platform, Getresponse. An attacker compromised a Getresponse employee’s account, leading to the breach. Although no phishing emails were sent from Coingecko’s domain, the attacker exported 1,916,596 contacts and sent phishing emails to 23,723 addresses from another Getresponse client’s account.
User Data Compromised in Coingecko Breach
Personal information such as names, email addresses, IP addresses, and metadata were compromised in the breach. However, no passwords were affected. Coingecko has notified affected users and is actively investigating the breach with Getresponse. The company is also reviewing and enhancing its security protocols to prevent future incidents.
Coingecko Urges Users to Stay Vigilant
Coingecko recommends that users remain vigilant against potential phishing attempts and avoid clicking on links or downloading attachments from unfamiliar sources. For further assistance, users are encouraged to contact Coingecko’s support portal.