{"id":418410,"date":"2022-03-19T10:08:18","date_gmt":"2022-03-19T07:08:18","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/blockfi-confirms-unauthorized-access-to-client-data-hosted-on-hubspot\/"},"modified":"2022-03-19T10:08:18","modified_gmt":"2022-03-19T07:08:18","slug":"blockfi-confirms-unauthorized-access-to-client-data-hosted-on-hubspot","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/blockfi-confirms-unauthorized-access-to-client-data-hosted-on-hubspot\/","title":{"rendered":"# BlockFi confirms unauthorized access to client data hosted on Hubspot"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a22bec1ebd32\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a22bec1ebd32\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/blockfi-confirms-unauthorized-access-to-client-data-hosted-on-hubspot\/#%E2%80%9D_BlockFi_confirms_unauthorized_access_to_client_data_hosted_on_Hubspot_%E2%80%9C\" >&#8221; BlockFi confirms unauthorized access to client data hosted on Hubspot &#8220;<\/a><\/li><\/ul><\/nav><\/div>\n<h1><span class=\"ez-toc-section\" id=\"%E2%80%9D_BlockFi_confirms_unauthorized_access_to_client_data_hosted_on_Hubspot_%E2%80%9C\"><\/span>&#8221; BlockFi confirms unauthorized access to client data hosted on Hubspot &#8220;<span class=\"ez-toc-section-end\"><\/span><\/h1>\n<div class=\"post-content\" data-v-128018ef>New Jersey-based crypto financial institution BlockFi confirmed a data breach incident via one of its third-party vendors, Hubspot. BlockFi\u2019s proactive warning about the breach aims to deter the intentions of bad actors in repurposing the user data for fraudulent activities.<\/p>\n<p>According to the <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/BlockFi\/status\/1504982848771608586\">announcement<\/a>, the hackers gained access to BlockFi\u2019s client data on Friday, Mar. 18, that were stored on Hubspot, a client relationship management platform:<\/p>\n<blockquote><p>\u201cHubspot has confirmed that an unauthorized third-party gained access to certain BlockFi client data housed on their platform.\u201d<\/p><\/blockquote>\n<p>As a third-party vendor for BlockFi, Hubspot stored user data such as names, email addresses and phone numbers. Historically, bad actors have used such information for conducting phishing attacks and gaining access to accounts through user-provided passwords.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Regarding recent third-party data incident: <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/t.co\/50z7IrQ1za\">pic.twitter.com\/50z7IrQ1za<\/a><\/p>\n<p>\u2014 BlockFi (@BlockFi) <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/BlockFi\/status\/1504982848771608586?ref_src=twsrc%5Etfw\">March 19, 2022<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>At the time of writing, BlockFi is supporting Hubspot\u2019s investigation to gain clarity on the overall impact of the data breach. While the exact details of the breached data are yet to be identified and revealed, BlockFi reassured users by highlighting that personal data \u2014 including passwords, government-issued IDs and <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">social<\/a> security numbers \u2014 \u201cwere never stored on Hubspot.\u201d<\/p>\n<figure><img decoding=\"async\" src=\"https:\/\/s3.cointelegraph.com\/uploads\/2022-03\/a5467cb1-bbf4-48d0-b672-c7fde5b742b0.png\"><\/figure>\n<p>In addition, BlockFi has also confirmed that its internal system and client funds were not accessed and that the breach remains limited to the third-party vendor, Hubspot.\u00a0<\/p>\n<p>The company further recommended four methods to help users protect their online presence from bad actors \u2014 good password hygiene, two-factor authentication (2FA), allowlisting trusted <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>lications and vigilance against scammers.<\/p>\n<figure><img decoding=\"async\" src=\"https:\/\/s3.cointelegraph.com\/uploads\/2022-03\/ad0278b4-f87d-4313-b50e-bef69a04041e.png\"><\/figure>\n<p>On an end note, BlockFi acknowledged that time is of the essence and are expediting their investigations to identify the extent of the breach:<\/p>\n<blockquote><p>\u201cAdditional information will be emailed to all impacted clients in the coming days.\u201d<\/p><\/blockquote>\n<p>Investors are advised to be wary of all company communication, especially that demand urgency in requesting\/changing personal details including passwords and wallet addresses.<\/p>\n<p><strong>Related: <\/strong><strong><em>Rare Bears Discord phishing attack nabs $800K in NFTs<\/em><\/strong><\/p>\n<p>On Friday, Mar. 18, the recently launched nonfungible token (NFT) project Rare Bears was attacked, resulting in a theft of nearly $800,000 in NFTs.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\"> Warning <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/BearsRare?ref_src=twsrc%5Etfw\">@BearsRare<\/a><br \/> Discord has unfortunately been compromised. Please DO NOT click any links, connect your wallet and block all incoming DMs in our discord. Our team are working on the situation as we speak <\/p>\n<p>\u2014 Rare Bears (@BearsRare) <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/BearsRare\/status\/1504293859467350019?ref_src=twsrc%5Etfw\">March 17, 2022<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>As Cointelegraph reported, the attacked was conducted by a hacker who posted a phishing link in the project\u2018s Discord channel, and eventually stole 179 NFTs.<\/p>\n<p><template data-name=\"subscription_form\" data-type=\"markets_outlook\"><\/template><\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">News<\/a> articles, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/general\/\" target=\"_blank\" rel=\"noopener\">General category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/cointelegraph.com\/news\/blockfi-confirms-unauthorized-access-to-client-data-hosted-on-hubspot\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8221; BlockFi confirms unauthorized access to client data hosted on Hubspot &#8220; New Jersey-based crypto financial institution BlockFi confirmed a data breach incident via one of its third-party vendors, Hubspot. BlockFi\u2019s proactive warning about the breach aims to deter the intentions of bad actors in repurposing the user data for fraudulent activities. According to the&#8230;<\/p>\n","protected":false},"author":1,"featured_media":418411,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/images.cointelegraph.com\/images\/1200_aHR0cHM6Ly9zMy5jb2ludGVsZWdyYXBoLmNvbS91cGxvYWRzLzIwMjItMDMvYzBmNTU1YmYtNTMzOS00MDQxLThhNDItMTRiNWQwYTgyYTQwLmpwZw==.jpg","fifu_image_alt":"","footnotes":""},"categories":[1],"tags":[74894,117,72366,74714,70944,73157,75134],"class_list":["post-418410","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general","tag-blockchain","tag-business","tag-data","tag-email","tag-hackers","tag-investigation","tag-phishing"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/418410","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=418410"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/418410\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/418411"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=418410"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=418410"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=418410"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}