A hacker managed to steal a significant chunk of customer information from the crypto data firm Nansen after breaching one of the company’s third-party vendors.
Nansen acknowledged the attack in an announcement on the social media platform X on Friday, noting that the vendor breach allowed the hacker to access admin rights to an account that was used to provision customer access on the firm’s platform.
Nansen says a preliminary investigation revealed that the hacker managed to expose the personal information of 6.8% of their users.
“These users had their email addresses exposed, a smaller portion also had password hashes exposed, and the last, smallest group also had their blockchain address exposed. We have informed our users via email if and how they’ve been affected.”
Nansen claims the third-party vendor is an “established company” used by multiple Fortune 500 firms and other companies in the crypto industry. The data firm says it has asked the vendor to disclose the breach publicly, though it remains unclear at time of writing what company it is.
Nansen says users’ wallet funds won’t be impacted because they don’t request private keys, but the firm encourages its impacted customers to change their passwords and warns them to be wary of phishing attempts.
Don't Miss a Beat – Subscribe to get email alerts delivered directly to your inboxGenerated Image: Midjourney