These scam emails and SMS messages started coming shortly after Gemini user data popped up in multiple listings on hacking forums, advertising a database of 5.7 million customers’ email addresses and phone numbers up for sale. A data breach affecting a third-party vendor on or before Dec. 13 has been blamed for the phishing campaigns.
Gemini Warns Customers About Phishing, Shares Security Tips
Owned by the Winklevoss twins, Cameron and Tyler — famous for their legal battle with Mark Zuckerberg in the early days of Facebook — Gemini is a cryptocurrency exchange that allows users to transact or hold over 60 types of tokens. Gemini acknowledged the phishing incidents and the rise in phishing scams in a blog post on its website. “Some Gemini customers have recently been the target of phishing campaigns that we believe are the result of an incident at a third-party vendor,” the blog post reads. “This incident led to the collection of Gemini customer email addresses and partial phone numbers. No Gemini account information or systems were impacted as a result of this third-party incident, and all funds and customer accounts remain secure.” The network also encouraged users to reset their emails, enable two-factor authentication, and use hardware security keys to protect their accounts. “Online scammers have become increasingly sophisticated. Remaining vigilant so you can quickly catch phishing warning signs is crucial for your overall online security,” Gemini added.
Hackers Attempt to Sell Stolen Databases
According to media reports, several posts across multiple hacker forums advertised the stolen database for sale. The files include the email addresses and phone numbers of over 5.7 million Gemini customers, although it appears the cybercriminals could not profit from the database, as a new listing offered the information for free. However, some Gemini users claim they began receiving targeted emails and messages even before the December breach. The users targeted by the campaign added that they used the affected email addresses exclusively with Gemini. The testimonies raise questions about the true date of the breach and how much knowledge Gemini had before Dec. 13. Cryptocurrency scams skyrocketed in 2022, as seen earlier this year when hackers carried out iCloud phishing attacks to drain MetaMask users’ coins and NFTs. The FBI also warned about a rise in fake cryptocurrency apps aimed at duping American investors. In fact, such scams already claimed 244 victims, with a total of $42.7 million stolen so far. If you’re invested in or interested in entering the cryptosphere, we recommend reading up more on some of the recent Bitcoin and cryptocurrency scams hitting traders and investors. You could also check out our detailed guide to help you protect yourself from social engineering attacks, which are often the first stage of serious account-draining ploys.