FTX, BlockFi, Genesis Customer Data Compromised in Kroll Hack

A ‘cybersecurity incident’ affected Kroll, which gathers customer claim data on behalf of bankrupt companies.

AccessTimeIconAug 25, 2023 at 7:44 a.m. UTC
Updated Aug 25, 2023 at 2:41 p.m. UTC
10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

Customer data of bankrupt crypto exchange FTX, Genesis and lender BlockFi have been compromised due to a hack of Kroll, a third party agent that manages creditor claims on behalf of bankrupt companies.

Crypto account passwords and other sensitive data weren’t affected, but customers were warned to be on the lookout for scammers impersonating parties in the bankruptcy. Genesis and CoinDesk are part of the same parent company, Digital Currency Group.

An “unauthorized third party gained access to certain BlockFi client data housed on Kroll’s platform,” BlockFi said in a tweeted statement, and FTX said it was “closely monitoring the situation.”

While internal systems at both crypto firms are intact, the incident may have raised fears that the personal information could be used by malicious actors attempting to extract still juicier details such as seed phrases or passwords.

Kroll, which did not immediately respond to a request for comment from CoinDesk, is a bankruptcy service provider for numerous companies, not just in the crypto sector. Kroll’s website also promotes a cybersecurity consultancy service, involving “elite cyber risk leaders uniquely positioned to deliver end-to-end cyber security services worldwide.”

In a statement published on its sites for the FTX and Genesis bankruptcy cases, Kroll said the hack stemmed from a SIM-swapping attack against one of its employees. The hacker accessed online files including customers' names, addresses, email addresses and size of their claim, Kroll said.

FTX and BlockFi both filed for bankruptcy in November last year, after CoinDesk leaked details of FTX’s balance sheet, and both are undergoing legal proceedings to wind up and restore funds to creditors. Earlier this week a Delaware court heard that legal fees are draining $1.5 million per day from the estate.

UPDATE (Aug. 25, 14.41 UTC): adds statement from Kroll website, confirms Genesis was affected throughout story.

Edited by Parikshit Mishra.

Disclosure

Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by Block.one; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk offers all employees above a certain salary threshold, including journalists, stock options in the Bullish group as part of their compensation.

Jack Schickler

Jack Schickler was a CoinDesk reporter focused on crypto regulations, based in Brussels, Belgium. He doesn’t own any crypto.


Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.