Potential increase in cryptocurrency leaks

Increase in cryptocurrency leaks after Trump endorses Bitcoin

Recently, Constella Intelligence has observed a rise in attacks and data breaches leading to cryptocurrency leaks. This increase may be due in part to comments made by former President Donald Trump in support of Bitcoin, which may have increased hackers' interest in these sites.

Former President Donald Trump recently positioned himself as a pro-crypto presidential candidate. During his keynote speech at the Bitcoin 2024 conference in Nashville, Tennessee, held from July 25-27, 2024, Trump emphasized the transformative potential of cryptocurrencies. He promised to make the United States a leading country in Bitcoin mining and digital asset management.

These comments may have caused the value of crypto websites to increase, making them more attractive targets for cybercriminals. As Bitcoin prices rise, the incentive to attack these platforms grows, highlighting the need for robust security measures.

Crypto Leaks Overview

In the first half of 2024, over 250 potential breaches or leaks related to cryptocurrencies, NFTs, and Bitcoin were reported. These potential breaches may have affected users of various cryptocurrency platforms, including Bitcointalk, Crypto.com, Binance, eToro, and others.

Below are examples of how threat actors offer information about these crypto-related websites on the dark web

Zuelacoin data leak:

This information was published on March 31, 2024. According to the threat actor, the data includes:

• Emails
• Names
• Social media profiles (Twitter, Facebook, Telegram)

Binance cryptocurrency leak:

The post was created on May 27, 2024. The information disclosed includes:

• Emails
• Full names
• Telephones
• Countries

Mobile apps like CashCoin, Coinbase and KuCoin:

The threat actor “whix” published this on March 26, 2024. The information disclosed includes:

• Emails
• Username
• Passwords
• Countries
• IP addresses
• Payment methods

eToro cryptocurrency leak:

The same threat actor also reported this on March 25, 202, where the following information was found:

• Full names
• Emails
• Countries
• IP addresses
• Amounts
• Payment methods

Bitcointalk cryptocurrency leak:

According to the threat actor, a database containing the following information was published on March 25, 2024:

• Emails
• Username
• Ethereum addresses

These platforms are an integral part of the crypto ecosystem and provide services such as trading, wallet management and social interaction for crypto enthusiasts.

Extent of threat posed by infostealers

Constella Intelligence has verified whether the information released may have been the result of infostealer infections. This review found that nearly 4 million users of these cryptocurrency companies were exposed to infostealer data. Most of the attacks affected major cryptocurrency exchanges:

1. Binance: More than 2 million users exposed.
2. eToro: More than 500,000 users exposed.
3. Crypto.com: More than 300,000 users exposed.
4. Local Bitcoins: More than 200,000 users exposed.

Constella Intelligence investigated the Infostealer exposures and also discovered apparent Infostealer infections among potential employees of some of these companies, including Binance.com, eToro.com, Crypto.com, and Localbitcoins.com, among others.

Impact of crypto-related breaches

The disclosure of such extensive and sensitive information has significant and far-reaching consequences as it puts the financial security and privacy of millions of users at risk. The compromised data can be misused for various malicious activities:

1. Identity theft: Personal information such as full names, addresses and birthdays can be used for identity theft.
2. Financial fraud: Payment methods and transaction histories can be exploited to conduct unauthorized transactions.
3. Phishing attacks: Email addresses and social media profiles can be used to create convincing phishing scams.

Recommendations for users

To mitigate the risks associated with recent security breaches, users should adopt the following security practices:

1. Use strong and unique passwords: Make sure each cryptocurrency account has a strong, unique password. Consider using a password manager to securely generate and store complex passwords.
2. Enable two-factor authentication (2FA): By adding an additional layer of security through 2FA, the risk of unauthorized access to accounts can be significantly reduced.
3. Monitor crypto transactions regularly: Keep a close eye on your cryptocurrency transactions and wallet activity to detect unauthorized activity. Early detection can help prevent significant financial loss.
4. Be careful of phishing attempts: Be cautious of emails and messages that ask you for personal information or request to log into your accounts. Verify the authenticity of such requests through official channels.
5. Update security settings on crypto platforms: Regularly check and update your security settings on cryptocurrency exchanges and wallets. Make sure all recovery options are up to date and secure.

***This is a Constella Intelligence blog syndicated by the Security Bloggers Network, written by Alberto Casares. Read the original post at: