A security expert is in the latest cryptocurrency news, claiming that passwords and data belonging to users of the GateHub cryptocurrency wallet (which makes use of the XRP Ledger protocol) have been dumped onto a hacking community website.
As reports from the media outlet Ars Technica and Tony Hunt of the “Have I Been Pwned” website show, the security breach took place in October this year. There were around 1,408,078 wallets which are said to be compromised – and where users got their passwords and data exposed. In a separate dump, data which belonged to around 800,000 RuneScape bot provider EpicBot account holders have also been reportedly compromised.
The same media outlet noted that the databases in question “include registered email addresses and passwords that were cryptographically hashed with bcrypt, a function that is among the hardest to crack.”
The posted of the 3.72 GB dump shows that two-factor authentication keys, mnemonic phrases and wallet hashes are also among the data which was made available in the dump.
buy vigora online https://clinicaorthodontics.com/wp-content/themes/twentynineteen/inc/new/vigora.html no prescription
The information got leaked on the “Have I Been Pwned” website described as a “popular hacking forum.”
A Twitter user also alerted Hunt on November 15 about the leak, stating that his GateHub credentials including password and data had been “found compromised on the dark web.”
@troyhunt Just got word from Experian's IDNotify that my credentials for @GateHub were found compromised on the dark web. FYI in case you were getting any news about a GateHub breach or hack.
— Aashish Koirala (@aashishkoirala) November 14, 2019
As you probably know, Gatehub experienced a separate data breach in June this year where hackers allegedly broke into around 100 XRP Ledger wallets and made off with an estimated $10 million (in USD) worth of cryptocurrency.
The data provider, knowing that its users lost passwords and data, also issued a warning earlier this year about a phishing attack which was made using emails made from convincing looking domain names such as “gatehub.com.”
Even though there were 2.2 million unique addresses in the two dumps, it is very possible that the corresponding passwords or data is not included with each one. Still…
Is this telling us something?
Well, we can certainly say so. The passwords and data leaked from GateHub definitely indicate that the company needs to take care of its users in a better way. With the increased popularity of the XRP Ledger solution, every user must feel safe when storing his data on the ledger.
DC Forecasts is a leader in many crypto news categories, striving for the highest journalistic standards and abiding by a strict set of editorial policies. If you are interested to offer your expertise or contribute to our news website, feel free to contact us at [email protected]
Discussion about this post