Malware
Urgent Action Required: Nansen, Leading Crypto Firm, Urges Users to Reset Passwords Following Major Security Incident
Crypto firm Nansen urges users to reset passwords following a vendor breach. In an effort to ensure security, the company advises its customers to change their login credentials as a precautionary measure. Nansen takes swift action to protect user data and maintain trust. Stay informed and stay safe in the ever-evolving world of cryptocurrency.
Nansen Users Asked to Reset Passwords Following Data Breach
In the wake of a recent data breach at its authentication provider, Ethereum blockchain analytics firm Nansen has requested a subset of its users to reset their passwords.
Nansen, a well-known entity in the cryptocurrency space, offers users insights into Ethereum wallet activity, helps identify emerging projects, and assists in making informed investment decisions.
In a letter sent to affected users, Nansen revealed that they were informed on September 20th that one of their third-party vendors had experienced a data breach.
According to Nansen, the unnamed vendor was compromised by an attacker who gained access to an admin panel controlling customer access on the analytics platform.
Upon being notified of the incident, Nansen promptly halted the malicious activity. However, their subsequent investigation confirmed that user data had indeed been compromised.
“Based on our preliminary investigations over the past 48 hours, we have determined that 6.8% of our users were impacted,” reads Nansen’s notice shared on Twitter.
The notice further states, “These users had their email addresses exposed, with a smaller portion also having password hashes exposed, and a last, smaller group had their blockchain addresses exposed.”
If you have any information on the breached provider or other attacks, you can contact us confidentially via Signal at 646-961-3731 or on Telegram at @lableep.
All affected users have been notified about the breach through email notifications, and Nansen’s support team has also reached out to them, requesting a password reset.
Although the passwords were encrypted, Nansen advises impacted individuals to change their passwords as a precautionary measure against potential brute-forcing.
The firm highlights the increased risk of phishing for individuals whose details have been exposed. With knowledge of digital asset ownership and email addresses, threat actors can target them more effectively.
As the investigation is still ongoing, it is possible that the scope of the impact may be revised to include more users.
Therefore, it is advisable for all Nansen users, regardless of whether they have received a notice, to reset their passwords as a precautionary measure.