Cyber security news for all

More

    Crypto loan provider BlockFi has been attacked by hackers

    The US company BlockFi, which specializes in crypto loans manages more than 500 million US dollars in various cryptocurrencies. Many investors also entrust with their Bitcoin and other cryptocurrencies in order to collect attractive interest. But now the news is startling that BlockFi has been targeted by cybercriminals.

    As reports, attackers managed to hijack an employee’s cell phone using a SIM swap. This left access to the BlockFi back office to hackers for more than an hour. However, no sensitive customer data such as credit card information has been stolen and attempts to transfer funds from BlockFi to third party accounts have failed. BlockFi’s community has expressed disappointment at the lack of prompt and detailed disclosure regarding the data breach as the announcement came four days after the hacking attempt.

    Background To The Attack On BlockFi

    BlockFi admits that the hackers entered the internal system. Customer data was used for marketing, including details of name, email address, home address and activity log. With this information, it is normally not possible to carry out monetary actions, since passwords or other identification methods are also required. According to BlockFi, the attack was quickly recognized and a second attempt was already prevented. As immediate measures, access rights to employees and internal systems were restricted and their cell phones were provided with a security update.

    Advises That Accounts Must Be Secured With Two Factor Authentication

    2FA should be handled better via an authentication app. Those who do without 2FA run the risk of losing control of their account by simply clicking on ‘forgot password’. Because if they control an e-mail account, they can quickly be successful without 2FA.

    As a second security measure, BlockFi recommends activating whitelisting. This means that wallet addresses are only activated for withdrawals after 3 days, so that in the worst case scenario, customers have more time to react to suspicious actions and prevent their funds from running out.

    Recent Articles

    The warning sent to employees about Tiktok app was a mistake says Amazon

    On Friday morning, Amazon sent out a memo to its employees, asking them to uninstall the popular social media app TikTok off their phone....

    Other Android phones sold in the US contains pre-installed malware

    There’s a discovery of Pre-installed malware on another phone by researchers from Malwarebytes; through the lifeline Assistance program for sale in the United States....

    About 15 billion stolen passwords and usernames sold on the dark web.

    A recent finding has shown that about 15 billion passwords and usernames are distributed on the dark web. This compromise will bring about credential...

    Hundreds of multinational companies aimed by Russian BEC Gang

    According to the security firm Agari, there has been a discovery of a newly uncovered Russia-based business email compromise gang; BEC gang that scams...

    The slamming of undeletable Adware on Android users

    Researchers have discovered that about 14.8% of users of android phones that were targeted with mobile adware or malware the previous year have undeletable...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox