Celsius customer data leaked
The platform, like the OpenSea marketplace, suffered as a result of the actions of an employee of the mailing service Customer.io
29.07.2022 - 10:30
961
2 min
0
What’s new? Representatives of Celsius, a bankrupt DeFi platform, have reported a leak of personal user data. It is clarified that an employee of the mailing list service Customer.io, whose services the platform used, passed a list of email addresses of its customers to a “third-party bad actor.” Celsius does not view the incident as a serious threat to users but warns of possible phishing attacks. The company also filed a complaint with law enforcement about Customer.io and the incident as a “severe violation of vendor-client relations,” The Block reports.
How did events develop? Celsius was the victim of the same data breach as the OpenSea NFT marketplace. Initially, Customer.io denied that the data of the lending protocol had been stolen by an unscrupulous employee, but later discovered this leak as well. In their statement, they indicated that his actions resulted in leaks of user data of four other unnamed customers of the service.
Representatives of the service also noted that the attacker had no access to other data of the company’s customers other than email. Customer.io’s employee, who held the position of senior engineer, was fired immediately after the incident, and information about him was handed over to law enforcement agencies.
In March, representatives of BlockFi, a crypto lending platform, also reported customer data leaks. The incident occurred because one of its third-party providers, Hubspot, was hacked.
Useful material?
Incidents
Developers warned of potential risks to bridges across the ecosystem and asked exchanges for assistance.
Jun 22, 2026
Incidents
The defendant helped move funds stolen through investment scams and earned at least $4 million for his role in the operation.
Jun 10, 2026
Incidents
The company is linking the incident to a compromised private key on a service wallet, rather than a smart contract exploit
May 22, 2026
Incidents
Following the incident, the project temporarily halted trading operations and node activity.
May 15, 2026
Incidents
The user spent weeks unsuccessfully trying to guess the password until Claude helped find an old wallet backup file
May 14, 2026
Crypto regulations
Authorities are introducing mandatory registration for companies handling cross-border crypto transactions
May 8, 2026
Telegram
Twitter