Nansen, a renowned Ethereum blockchain analytics firm, has taken swift action in response to a recent data breach at one of its authentication providers. A subset of users has been requested to reset their passwords as a precautionary measure.
With its valuable insights into Ethereum wallet activity and its ability to identify emerging projects, Nansen has become a trusted entity in the cryptocurrency space. Users rely on its platform to make informed investment decisions.
In a letter addressed to affected individuals, Nansen disclosed that on September 20th, they became aware of a data breach suffered by a third-party vendor. The attacker managed to gain unauthorized access to an admin panel that controlled user access on the analytics platform.
Nansen acted promptly and halted the malicious activity after being alerted by the vendor. However, subsequent investigations confirmed that user data had been compromised.
According to Nansen’s notice shared on X (Twitter), approximately 6.8% of their users were impacted by the breach. These individuals had their email addresses exposed, with a smaller group also having their password hashes and an even smaller group having their blockchain addresses exposed.
All affected users have been notified about the breach through email notifications, and Nansen’s support team has reached out to them, urging them to reset their passwords. Although the passwords were encrypted, Nansen advises impacted individuals to change them as a precaution against potential brute-forcing attempts.
Nansen emphasizes the increased risk of phishing attacks for those whose details were exposed. Threat actors armed with information about digital asset ownership and email addresses can target these individuals more effectively.
As the investigation is still ongoing, it is possible that the extent of the breach may expand to include more users. Therefore, it is advisable for all Nansen users, regardless of whether they have received a notification, to reset their passwords as a precautionary measure. By doing so, they can ensure the continued security of their accounts.
CyberSec84 | Cybersecurity news. 
Leave a comment