Internet Security

Robinhood Security Breach Affected 7 Million Users

Key Takeaways Robinhood experienced a security breach last week in which hackers gained extensive access to user data. 5 million people had their email addresses stolen, while another 2 million had their full names stolen. No financial data was stolen, and none of Robinhood’s customers have experienced any financial loss. Share this article URL Copied…

Key Takeaways

  • Robinhood experienced a security breach last week in which hackers gained extensive access to user data.
  • 5 million people had their email addresses stolen, while another 2 million had their full names stolen.
  • No financial data was stolen, and none of Robinhood’s customers have experienced any financial loss.

Share this article

Trading app Robinhood reported today that a security breach resulted in attackers gaining access to user information.

Millions of Users Affected

According to Robinhood, attackers obtained the email addresses of 5 million users and the full names of another 2 million people.

Furthermore, 310 people had additional information stolen, including their name, date of birth, and zip code. 10 of those customers had “more extensive account details revealed.” The company says that no financial information—such as SSNs, bank account numbers, or debit card numbers—was stolen. Furthermore, no customers experienced financial loss.

Robinhood added that the attacker responsible demanded an extortion payment to prevent the information from leaking, but did not say whether it complied with those demands. The company says that it informed legal authorities of the incident and that security firm Mandiant is carrying out an investigation. Robinhood reports that the incident happened late during the evening of Wednesday, Nov. 3 but did not give an exact time.

Other Companies Have Been Targeted

Various other crypto companies have seen less severe data leaks following the same pattern. In late October, CoinMarketCap leaked the email addresses of approximately 3 million users.

Other companies that have suffered similar attacks include Celsius, Ledger, and BitMEX. Though those companies did not necessarily disclose the extent of each attack, each company has roughly 1 to 3 million users, making those attacks smaller by default.

The larger scale of this week’s attack is likely due to Robinhood’s comparatively mainstream appeal. Robinhood is not merely a cryptocurrency app, but rather a retail stock trading app with secondary crypto features.

Robinhood has approximately 31 million users, meaning that the attack affected just under a quarter of its user base.

Disclaimer: At the time of writing this author held less than $100 of Bitcoin, Ethereum, and altcoins.

Share this article

Read More

Be the first to write a comment.

Leave a Reply

Internet Security

Solana Attack: Slope Is to Blame; Sam Bankman Extends Support

Following yesterday’s attack on the Solana ecosystem, information is now emerging suggesting wallet provider Slope is primarily to blame for the security flaw that allowed thousands of Solana customers to have their cryptocurrency stolen. Slope is a layer-1 (L1) Web3 wallet service for the Solana blockchain…

Following yesterday’s attack on the Solana ecosystem, information is now emerging suggesting wallet provider Slope is primarily to blame for the security flaw that allowed thousands of Solana customers to have their cryptocurrency stolen. Slope is a layer-1 (L1) Web3 wallet service for the Solana blockchain…
Read More

Continue Reading
Internet Security

Solana and Slope Confirm Wallet Security Breach

Key Takeaways Solana has confirmed that addresses affected by today’s security breach were created or used within the Slope wallet. Slope also published an official statement on the situation, noting that it will provide a full postmortem in the future. Full details of the attack are still under investigation. Share this article URL Copied The…

Key Takeaways

  • Solana has confirmed that addresses affected by today’s security breach were created or used within the Slope wallet.
  • Slope also published an official statement on the situation, noting that it will provide a full postmortem in the future.
  • Full details of the attack are still under investigation.

Share this article

The Solana Foundation and Slope have provided additional information on a security breach that affected thousands of wallets today.

Solana Confirms Wallet Breach

The Solana Foundation has published new details about today’s attack.

Earlier, nearly 8,000 addresses were drained through what was believed to be a breach of the third-party wallet app Slope.

This afternoon, the Solana Foundation confirmed on the Solana Status Twitter account that the addresses affected by the attack “were at one point created, imported, or used in Slope mobile wallet applications.”

It added that private key information was accidentally transmitted to an application monitoring service. It said that further details “are still under investigation.”

The attack only affected Slope’s downloadable wallet app; Slope hardware wallets are still secure. Though thousands of wallets were drained, the Solana Foundation added that the Solana protocol itself remains secure.

Slope also commented on the situation. It said that a “cohort” of Slope wallets were compromised and confirmed that several of its own staff wallets were drained.

Slope said that it had not confirmed the nature of the attack. “We have some hypotheses as to the nature of the breach, but nothing is yet firm,” Slope said in its official statement. It committed to publishing a full post-mortem in the future.

The company also suggested that users take action to secure their funds. It advised users to create a new seed phrase and wallet and transfer their funds to that wallet.

Both companies say that they are performing internal investigations and working with external auditors.

Various other individuals within the Solana ecosystem provided information and speculated on the attack earlier today.

At least two other projects in the Solana ecosystem have been hacked this year. Cashio was hacked for $28 million in March, while Wormhole was hacked for $322 million in February.

Disclosure: At the time of writing, the author of this piece owned BTC, ETH, and other cryptocurrencies.

Share this article

Read More

Continue Reading
Internet Security

How automation is transforming security and compliance

Presented by Vanta

Presented by Vanta


Security is more than a threat mitigator — it’s a growth enabler too. Catch up with this VB On-Demand event to learn how an automated security and compliance improves your security posture, helps meet SOC 2, HIPAA, or ISO 27001 regulations, gets you compliant fast, and more.

Watch free on demand here.


Cyber criminals are getting smarter, their attacks are continuously evolving, and their successes are leaving marks. Assaults are scaled effortlessly, from the one-to-one text phishing attempts on employees who post about new jobs on LinkedIn, to the “unprecedented” campaign against the Costa Rican government that brought much of their infrastructure to a standstill, resulting in losses of $125 million over 48 hours.

“What’s notable is the sophistication,” says Kaitlin Pettersen, VP of customer experience at Vanta. “The seeming legitimacy is improving. They’re getting smarter. They’re getting more strategic, and the financial and reputational cost of these data breaches is high.”

Customer trust is easily lost, but not easily won back — and that directly impacts your bottom line. Globally, fines for GDPR violations are huge, but smaller companies are also facing financial consequences for violations. The CCPA in California opens the door to lawsuits from customers whose data was involv

Read More

Continue Reading
Internet Security

2 police officers face off over who is boss

Social media users are concerned about a video of two security officers in a heated altercation…

Social media users are concerned about a video of two security officers in a heated altercation…
Read More

Continue Reading