It’s happened again, folks. Another cryptocurrency exchange has confirmed a hack. This time, the alleged victim is the trading platform Liquid, which said in a statement that it’s still investing the specifics of the attack including how much was potentially compromised and who might be responsible.
Liquid Is the Latest Subject of a Cyberattack
In a blog post, the company’s man in charge Mike Kayamori mentioned what occurred:
“On the 13th of November 2020, a domain name hosting provider that manages one of our core names incorrectly transferred control of the account and domain to a malicious actor. This gave the actor the ability to change DNS records and in turn, take control of several internal email accounts. In due course, the malicious actor was able to partially compromise our infrastructure and gain access to document storage.”
At the time of writing, it doesn’t look like any money was taken, which is the positive news. The bad news is that the hacker may have gotten a hold of customers’ login credentials and other private information. Kayamori went on to explain:
We believe the malicious actor was able to obtain personal information from our user database. This may include data such as your email, name, address and encrypted password.
As it stands, the company is presently investigating whether the hacker may have gained access to even further documentation, such as government-issued IDs of customers. These items are potentially used to verify consumer identities and could put individuals doing business through Liquid at risk of identity theft and other major problems.
The company has issued an email to all its users, saying that they would be smart to change their passwords as soon as possible.
Be Sure to Change Your Login Data
Kayamori ended his recent blog post by telling all clients to “remain vigilant” and monitor their personal credit history for any discrepancies that might emerge thanks to the recent hack. The post reads:
As a precautionary measure and consistent with ordinary good practices, we recommend that you remain vigilant by reviewing your financial account statements and credit reports closely, using a password manager to update your passwords frequently and exercising caution with any emails that ask you to provide any personal information. If you detect any suspicious activity on an account, you should promptly notify the financial institution or company with which the account is maintained.
2020 has been a huge year for incidents like this. Recently, Akropolis – a crypto lending service – reported a similar hack that saw more than $2 million in Dai tokens disappear overnight, while last June, Twitter was compromised and saw many high-profile accounts – including those of former president Barack Obama, his vice president Joe Biden and Microsoft mogul Bill Gates to name a few – taken over by a cyberthief that potentially made off with more than $120,000 of their followers’ bitcoin.