- A report claimed that hackers are selling stolen Gemini and Binance user data on the Dark Web.
- The leaked database includes over 230,000 names, emails, passwords, and location records.
- Phishing scams and fake wallet setups are used to steal access to crypto accounts.
Crypto security is under threat as stolen user records from Gemini and Binance are allegedly being sold on the Dark Web. The leaked data includes full names, emails, phone numbers, passwords, and location details, with threat actors auctioning it to the highest bidder, sparking fear among users of these leading exchanges.
Gemini Records Breach
According to Dark Web Informer, a known cybercrime monitoring site, a user going by the alias “AKM69” is behind the Gemini breach, claiming to possess over 100K records. Most of the data belongs to users based in the United States, while some are from the UK and Singapore.
The stolen information is being marketed for crypto-related scams, which include marketing, fraudulent recovery tactics, and identity theft. Cybersecurity experts say this is part of a wider trend of crypto-targeted breaches. Gemini has not yet commented on the alleged breach.
Binance Credentials Leaked
Just one day before, another hacker using the handle “kiki88888” listed a database of Binance user credentials. The post claimed to have 132,744 email and password combinations. Speculations arose whether the data came from Binance or through third-party leaks. However, concerns are rising about the vulnerability of crypto user data.
Dark Web Informer suggested the Binance data may not have come from a system breach but could be the result of users falling for phishing scams or clicking suspicious links. The platform warned users of clicking random links.
Further, on March 21, the Australian Federal Police alerted 130 crypto users about a scam campaign. The attackers used fake sender IDs that mimicked Binance and other exchanges and tricked into revealing sensitive data.
Related: Upbit Wins Legal Battle, FIU Ban Is Temporarily Suspended
Also, on March 14, Coinbase and Gemini users were targeted wherein the victims were asked to set up new wallets using pre-made recovery phrases. These phrases were already controlled by the fraudsters and when accessed, the hackers gained full control of the victims’ wallets.
As these security attacks increase, experts urge users to stay alert against suspicious links. The rising trend of private data availability on the Darkweb warns of the escalating threats to crypto owners, emphasizing the need to boost their cybersecurity.
