A threat actor (TA) has posted databases belonging to two prominent companies utilizing blockchain technology, The DFINITY Foundation and Cryptonary, on the Russian-language forum Exploit. The databases, if genuine, contain sensitive information of hundreds of thousands of users, allegedly exposing them to significant security risks.
The threat actor’s post on Exploit detailed the alleged data breaches at DFINITY and Cryptonary.
Details of Alleged Data Breaches at DFINITY and Cryptonary
For The DFINITY Foundation, the threat actor claimed to have over 246,000 user records with information fields including:
- Email Address
- First Name
- Last Name
- Birthday
- Member Rating
- Opt-in Time and IP
- Confirm Time and IP
- Latitude and Longitude
- Timezone, GMT offset, DST offset
- Country Code, Region
- Last Changed Date
- Leid, EUID
- Notes
For Cryptonary, the post advertised 103,000 user records containing:
- First Name
- Last Name
- Organization
- Title
- Phone Number
- Address
- City, State/Region, Country, Zip Code
- Historic Number of Orders
- Average Order Value
- User Topics
The prices quoted for these datasets were $9,500 for DFINITY’s data and $3,500 for Cryptonary’s data.
The DFINITY Foundation is a Swiss-based not-for-profit organization known for its innovative approach to blockchain technology. It operates a web-speed, internet-scale public platform that enables smart contracts to serve interactive web content directly into browsers. This platform supports the development of decentralized applications (dapps), decentralized finance (DeFi) projects, open internet services, and enterprise systems capable of operating at hyper-scale.
On the other hand, Cryptonary is a leading platform in the crypto tools and research space. It provides essential insights and analysis to help users navigate the complexities of the cryptocurrency market and capitalize on emerging opportunities.
When The Cyber Express Team accessed the official website of The DFINITY Foundation, they found a message warning visitors about phishing scams on third-party job boards. The message read:
“Recently, we’ve seen a marked increase in phishing scams on third-party job boards — where an individual impersonating a DFINITY team member persuades job-seekers to send confidential information and/or payment. As good practice, please continue to be vigilant regarding fraudulent messages or fake accounts impersonating DFINITY employees. If you need to confirm the legitimacy of a position, please reach out to [email protected].”
While this message serves as a caution regarding phishing scams, it is unclear whether it hints at a broader security issue or is merely a general warning. The DFINITY website and the Cryptonary website both appeared fully functional with no evident signs of compromise.
The Cyber Express Team reached out to the officials of both companies for verification of the breach claims. However, as of the time of writing, no official response had been received, leaving the authenticity of the threat actor’s claims unverified.
Now whether this message is a hint that they are being attacked by a criminal or it’s just a caution message, we can come to the conclusion they release any official statement regarding the same.
Implication of Cyberattack on Blockchain Technology
However, if the claims of the data breaches are proven true, the implications could be far-reaching for both The DFINITY Foundation and Cryptonary. The exposure of sensitive user data could lead to:
Identity Theft and Fraud:
Users whose personal information has been compromised could become victims of identity theft and fraud, leading to financial and personal repercussions.
Reputational Damage:
Both companies could suffer significant reputational harm. Trust is a critical component in the blockchain and cryptocurrency sectors, and a data breach could erode user confidence in their platforms.
Legal and Regulatory Consequences:
Depending on the jurisdictions affected, both companies might face legal actions and regulatory fines for failing to protect user data adequately.
Operational Disruptions:
Addressing the breach and enhancing security measures could divert resources and attention from other business operations, impacting overall performance and growth.
While the claims remain unverified, the potential consequences highlight the importance of vigilance and proactive security strategies. The Cyber Express Team will continue to monitor the situation and provide updates as more information becomes available.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.