Connect with us

Blockchain

Crypto Users Claim Gemini Email Leak Happened Much Earlier Than First Reported

Published

on

“It wasn’t handled very well,” one user described Revelation emerges by Cointelegraph on December 14 regarding the leak of 5.7 million Gemini customer email addresses and partial phone numbers. Shortly after the publication, several users reached out to Cointelegraph, claiming that the leak, which Gemini attributes to a “third-party incident,” occurred much earlier than initially expected.

Mysterious reports of users receiving targeted phishing emails began appearing on the official r/Gemini Subreddit in the preceding weeks. In one thread dating back to November, user DaveJonesBones claimed That he received a targeted phishing email from an address that was only registered on Gemini:

“I promoted a Cyberbroker NFT drop using the Opensea branding. I believe I also received one last month, but deleted it without reading it. Today, I got the hump because I specifically opted out of all Gemini marketing emails.”

To which the Gemini representative responded:

“Report this to our security team. Thanks for letting us know.”

in another thread titled “Gemini hacked. Gemini user data is being used for complex phishing attempts” From two weeks prior, user Exit_127 claimed to have received a phishing email from a Metamask scammer regarding the need to “sync my wallet due to a merge.” The user also claimed “I use email aliases so that every online account has a specific email associated with it. This phishing attempt went to the email that only my Gemini account used.”

A similar thread by user opfu from the previous week claimed Gemini was already aware of the hack. as such Tell by opfu:

“Just received an email claiming that my Exodus wallet was linked to the Binance exchange from Bermuda (phishing of course). I only use this particular email address on Gemini. When I asked Gemini, they confirmed a breach with a 3rd party seller. Emails customers and partial phone numbers. When I asked if they plan to let users know, they said thanks for the feedback.”

Another user answered:

“Same thing happened to me too. The email was definitely a phishing attempt. I was stumped how Exodus got my Gemini email address too, so I knew there must have been some hack at some point…”

Gemini Books On official speech Gemini account information or systems were not affected as a result of this third party incident, and all funds and customer accounts will remain secure. It also warned of “an increase in phishing campaigns” as a result of a third-party breach. The blog post did not mention the date of the security incident. Prior to publication, Cointelegraph reached out to a Gemini spokesperson who declined to comment on the matter.

An alleged targeted phishing attempt was sent to an email address from Gemini on October 3, 2022 | Source: anonymous user