+ 7.05
+ 2.21%
+ 4.00
+ 1.18%
+ 6.32
+ 1.54%
+ 1.27
+ 0.94%
+ 1.54
+ 0.9%

4.8 Million User Records Allegedly Leaked From Paxful Trading Platform On Sale For One Bitcoin

April 9, 2021 11:56 am
Share to Linkedin Share to Twitter Share to Facebook Share to Print License More
4.8 Million User Records Allegedly Leaked From Paxful Trading Platform On Sale For One Bitcoin

Update: We have received an email from the company clarifying that the data was obtained illegally from a third party supplier Paxful previously used.

"We've completed the investigation. Our customers’ data has not been compromised in any way. There has been no data breach of the Paxful platform."

Peer-to-peer cryptocurrency trading platform Paxful has become the latest target of a massive data breach.

What Happened:  According to a report from the Telegram channel ‘Information Leaks,’ a Paxful database containing 4.8 million users and employee information is now available for sale on a darknet forum.

The leak contained full names, email addresses, hashed passwords, IP addresses, and digital browser fingerprints belonging to users. In some cases, even phone numbers, addresses, and dates of birth of specific users were available.

An anonymous seller with the username “mafufi” shared a sample of the stolen data froma cloud-based pay management system for employees salarium.com. The entire database was offered for sale for 1 BTC (Bitcoin), which amounted to $58,708 at press time.

The seller reported the date of the breach as April 5, but so far, Paxful has not made any public statements confirming or denying that their database has been compromised. The company did not respond to Benzinga’s request for comment at the time of writing.

Why It Matters: Paxful’s data leak comes amidst a number of similar incidents that have taken place over the past week. Facebook, Inc’s (NASDAQ:FB) data leak on April 3 saw over 533 million users' data made publicly available for free. This was followed by Microsoft Corporation (NASDAQ:MSFT) owned LinkedIn’s leak where data scraped from 500 million users was put up for sale on a hacker forum.

LinkedIn claimed that the data was an aggregation “scraped” from a number of websites and companies and wasn’t a result of LinkedIn’s database security being compromised in any way.

“This was not a LinkedIn data breach, and no private member account data from LinkedIn was included in what we’ve been able to review,” said the company in a statement.

Related Articles

It's Never Been Easier To Buy Cryptocurrencies. Here Is Why.

The first decentralized cryptocurrency, Bitcoin, was created in 2009 by the mysterious developer Satoshi Nakamoto. Over the past decade, a host of other digital currencies have become available. These are collectively known as ‘altcoins’ and, by some estimates, number over 5,000 unique tokens each with their own proposed use cases.  read more

Coinbase, Digital Currency Group Make Time Magazine's 100 Most Influential Companies List Alongside Tesla, Amazon, Other Giants

Time Magazine has included two top crypto firms in its “top 100 most influential companies of 2021” list. read more

Why Crypto Exchange Binance Launches Tesla Stock Tokens

Binance, the largest crypto exchange by volume, announced today that it is launching zero-commission tradeable Tesla Inc (NASDAQ: TSLA) stock tokens. read more

BNY Mellon Invests In Cryptocurrency Custodian Fireblocks

Bank of New York Mellon (NYSE: BK), one of the largest custody banks in the world, has invested in cryptocurrency custodian Fireblocks. What Happened: The strategic investment was part of a $133 million Series C venture capital fundraise led by Coatue, Ribbit, and Stripes. read more