Liquid, the 16th largest cryptocurrencycryptocurrency exchange by volume, today disclosed details about a hack that exposed its customers’ personal information, possibly including names, addresses and encrypted passwords.
Update on security incident from 13 November 2020.
Having contained the attack, reasserted control of the domain, and performed a comprehensive review of our infrastructure, we can confirm client funds are accounted for and remain safe and secure. https://t.co/ebbLd6eprB
In a blog post, Mike Kayamori, CEO of the cryptocurrency exchange Liquid, said that hackers on November 13 wrestled control over one of Liquid’s domain names (quoine.com, the site of Liquid’s Japanese parent company), after hacking into its domain name hosting provider.
This allowed the hacker to control company email addresses; now inside the systems, the hacker “was able to partially compromise our infrastructure, and gain access to document storage,” said Kayamori.
Nov 13th our https://t.co/hwniBQoyk5 domain was compromised via our DNS provider. We revoked all API tokens issued prior to today, which have no IP whitelist applied. If your API key was revoked, create a new API and request to whitelist your IP address: https://t.co/RiJfeEkoTF
Kayamori said that they “intercepted and contained the attack,” took further action to protect its customers, and informed the police.
He said that customers' funds are “accounted for, and remain safe and secure,” and that cold-storage crypto wallets weren’t compromised.
However, Kayamori believes that the hacker stole personal information about its customers. “This may include data such as your email, name, address and encrypted password,” he said.
Kayamori said the firm is unsure whether the hacker also accessed ID photos, selfies and proof of addresses used for identity checks. Liquid accepts credit card and bank statements as proof of addresses.
To his customers, Kayamori said, “It is also possible that you may experience an increase in spam email and phishing attempts. Phishing attempts may be more sophisticated and difficult to detect when a malicious actor has access to your personal information.”
Change your passwords, folks.
Daily Debrief Newsletter
Start every day with the top news stories right now, plus original features, a podcast, videos and more.
Franchise owners of restaurant brands Johnny Rockets, Fatburger, Round Table Pizza, Great American Cookies, and other FAT Brands entities can now pay franchisee royalty payments in Bitcoin.
The publicly traded FAT Brands (Nasdaq: FAT), which boasts 18 different franchise concepts and more than 2,300 locations worldwide, said the move “underscores its commitment to financial and technological innovation.”
“Over the years, Bitcoin has transformed into a mainstream asset and, as a company, we see...
Users of popular payments apps PayPal and Venmo will soon be able to buy, sell, hold, and transfer Solana and Chainlink from directly inside their accounts alongside leading cryptocurrencies Bitcoin and Ethereum.
PayPal said that adding the new coins, which are both among the top 15 most valuable cryptocurrencies by market cap respectively according to data from CoinGecko, reflects the company’s "dedication to the evolving digital currency landscape.”
“Since we initially made cryptocurrencies a...
GameStop CEO Ryan Cohen has purchased $10.7 million in GME stock, eight days after the video game retailer announced its plans to add Bitcoin to its treasury reserve.
Cohen bought 500,000 Class A shares of GME at $21.55 per share, according to a financial disclosure filed on April 3 with the Securities Exchange Commission. The executive now holds 8.4% of stock issued by GameStop, or 37,347,842 shares.
GameStop's stock closed at $23.49 on Friday, up more than 11%. Shares are down about 50% sinc...
