{"id":526990,"date":"2022-12-14T21:59:45","date_gmt":"2022-12-14T18:59:45","guid":{"rendered":"https:\/\/en.buradabiliyorum.com\/crypto-users-claim-gemini-email-leak-occurred-much-earlier-than-first-reported\/"},"modified":"2022-12-14T21:59:45","modified_gmt":"2022-12-14T18:59:45","slug":"crypto-users-claim-gemini-email-leak-occurred-much-earlier-than-first-reported","status":"publish","type":"post","link":"https:\/\/buradabiliyorum.com\/en\/crypto-users-claim-gemini-email-leak-occurred-much-earlier-than-first-reported\/","title":{"rendered":"# Crypto users claim Gemini email leak occurred much earlier than first reported"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_84 counter-hierarchy ez-toc-counter ez-toc-custom ez-toc-container-direction\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-6a29bbae3b789\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #dd3333;color:#dd3333\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #dd3333;color:#dd3333\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-6a29bbae3b789\" checked aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-1'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/buradabiliyorum.com\/en\/crypto-users-claim-gemini-email-leak-occurred-much-earlier-than-first-reported\/#%E2%80%9D_Crypto_users_claim_Gemini_email_leak_occurred_much_earlier_than_first_reported_%E2%80%9C\" >&#8221; Crypto users claim Gemini email leak occurred much earlier than first reported &#8220;<\/a><\/li><\/ul><\/nav><\/div>\n<h1><span class=\"ez-toc-section\" id=\"%E2%80%9D_Crypto_users_claim_Gemini_email_leak_occurred_much_earlier_than_first_reported_%E2%80%9C\"><\/span>&#8221; Crypto users claim Gemini email leak occurred much earlier than first reported &#8220;<span class=\"ez-toc-section-end\"><\/span><\/h1>\n<div class=\"post-content\" data-v-30a6cf80>&#8220;Not handled well,&#8221; was how one user described the revelations brought forth by Cointelegraph on Dec. 14 with regards to a leak of 5.7 million Gemini customers&#8217; email addresses and partial phone numbers. Shortly after publication, multiple users reached out to Cointelegraph, alleging that the leak, which Gemini attributes to a &#8220;third-party incident,&#8221; h<a href=\"https:\/\/buradabiliyorum.com\/en\/category\/download-scripts-themes-apps\/\" data-internallinksmanager029f6b8e52c=\"9\" title=\"Download Scripts &amp; Themes &amp; Apps\" target=\"_blank\" rel=\"noopener\">app<\/a>ened much earlier than first expected.\u00a0<\/p>\n<p>Mysterious reports of users receiving targeted phishing emails began surfacing on the official r\/Gemini Sub<a href=\"https:\/\/buradabiliyorum.com\/en\/category\/social-mediaa\/\" data-internallinksmanager029f6b8e52c=\"1\" title=\"Social Media\" target=\"_blank\" rel=\"noopener\">reddit<\/a> in the weeks prior. In one thread dating back to November, user DaveJonesBones <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/old.reddit.com\/r\/Gemini\/comments\/yuzn4o\/targeted_nft_phishing_scam_to_unique_gemini\/\">claimed<\/a> that he received a targeted phishing email from an address that was only registered on Gemini:<\/p>\n<blockquote><p>&#8220;It promoted a Cyberbroker NFT drop using Opensea branding. I think I also received one last month, but I deleted it without reading it. Today, I got the hump because I&#8217;d specifically opted-out to all marketing emails from Gemini.&#8221;<\/p><\/blockquote>\n<p>To which a Gemini representative responded:<\/p>\n<blockquote><p>&#8220;Reporting this to our security team. Thank you for letting us know.&#8221;<\/p><\/blockquote>\n<p>In another thread <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.reddit.com\/r\/CryptoCurrency\/comments\/z8ekpe\/gemini_is_compromised_gemini_user_data_is_being\/\">titled<\/a> &#8220;Gemini is compromised. Gemini user data is being used for complex phishing attempts&#8221; from two weeks prior, user Exit_127 claimed he received a phishing email from a Metamask imposter regarding the need to &#8220;sync my wallet due to the merge.&#8221; The user also claimed that &#8220;I use email aliases so each online account has a specific email linked to it. This phishing attempt went to the email used by and only by my Gemini account.&#8221;<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">I just experienced a very sophisticated crypto phishing attempt from a <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/Gemini?ref_src=twsrc%5Etfw\">@Gemini<\/a> customer information hack\/leak.<\/p>\n<p>1) I first received this text message: <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/t.co\/0UVfHa9q7B\">pic.twitter.com\/0UVfHa9q7B<\/a><\/p>\n<p>\u2014 cfo.btc (@btc_cfo) <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/twitter.com\/btc_cfo\/status\/1597382743171936256?ref_src=twsrc%5Etfw\">November 29, 2022<\/a><\/p><\/blockquote>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>A similar thread by user opfu from the prior week claimed that Gemini was already aware of the breach. As <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/old.reddit.com\/r\/Gemini\/comments\/zeowmv\/how_do_hackers_have_my_gemini_email_address\/\">told<\/a> by opfu:\u00a0<\/p>\n<blockquote><p>&#8220;I just got an email claiming that my Exodus wallet was linked to the Binance exchange from Bermuda (phishing of course). I ONLY use that particular email address at Gemini. When I asked Gemini, they confirmed a breach at a third-party vendor. Customer emails and partial phone numbers. When I asked if they were planning on informing users, they said thanks for the feedback.&#8221;<\/p><\/blockquote>\n<p>Another user responded:<\/p>\n<blockquote><p>&#8220;The same thing happened to me as well. The email was definitely a phishing attempt. I was so confused how Exodus got my Gemini email address as well, so knew there must have been some compromised at some point\u2026&#8221;<\/p><\/blockquote>\n<p>Gemini&#8217;s wrote in its <a rel=\"nofollow noopener\" target=\"_blank\" href=\"https:\/\/www.gemini.com\/blog\/protecting-our-customers-from-phishing-campaigns\">official statement<\/a> that &#8220;No Gemini account information or systems were impacted as a result of this third-party incident, and all funds and customer accounts remain secure.&#8221; It also warned of &#8220;increased phishing campaigns&#8221; as a result of the third-party breach. The blog post did not mention the date of the security incident. Prior to publication, Cointelegraph reached out to a Gemini spokesperson who declined to comment on the matter. <\/p>\n<figure><img decoding=\"async\" src=\"https:\/\/s3.cointelegraph.com\/uploads\/2022-12\/39556a49-9ec5-4e3a-ab94-e9f67c74e131.png\" alt=\"\" title=\"\"><figcaption style=\"text-align: center;\"><em>An alleged targeted phishing attempt sent to a Gemini email address dated Oct. 3, 2022 <\/em>|<em> Source: Anonymous User<\/em><\/figcaption><\/figure>\n<p><template data-name=\"subscription_form\" data-type=\"crypto_biz\"><\/template><\/div>\n<blockquote><p><strong><span style=\"color: #ff6600;\">If you liked the article, do not forget to share it with your friends. Follow us on\u00a0<span style=\"color: #ff0000;\"><a style=\"color: #ff0000;\" href=\"https:\/\/news.google.com\/publications\/CAAqBwgKMLG0nwswvr63Aw\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">Google News<\/a><\/span>\u00a0too, click on the star and choose us from your favorites.<\/span><\/strong><\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\">For forums sites go to <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/forum.buradabiliyorum.com\/\" target=\"_blank\" rel=\"noopener\">Forum.BuradaBiliyorum.Com<\/a><\/span><\/strong>\n<\/p><\/blockquote>\n<blockquote>\n<p style=\"text-align: center;\"><strong>If you want to read more <a href=\"https:\/\/buradabiliyorum.com\/en\/category\/news\/\" data-internallinksmanager029f6b8e52c=\"2\" title=\"News\" target=\"_blank\" rel=\"noopener\">News<\/a> articles, you can visit our <span style=\"color: #ff9900;\"><a style=\"color: #ff9900;\" href=\"https:\/\/en.buradabiliyorum.com\/general\/\" target=\"_blank\" rel=\"noopener\">General category.<\/a><\/span><\/strong><\/p>\n<\/blockquote>\n<p><span style=\"color: black;\"><a style=\"color: #ff9900;\" href=\"https:\/\/cointelegraph.com\/news\/crypto-users-claim-gemini-email-leak-occurred-much-earlier-than-first-reported\" target=\"_blank\" rel=\"noopener\">Source<\/a><\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>&#8221; Crypto users claim Gemini email leak occurred much earlier than first reported &#8220; &#8220;Not handled well,&#8221; was how one user described the revelations brought forth by Cointelegraph on Dec. 14 with regards to a leak of 5.7 million Gemini customers&#8217; email addresses and partial phone numbers. Shortly after publication, multiple users reached out to&#8230;<\/p>\n","protected":false},"author":1,"featured_media":526991,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/images.cointelegraph.com\/cdn-cgi\/image\/format=auto,onerror=redirect,quality=90,width=1200\/https:\/\/s3.cointelegraph.com\/uploads\/2022-12\/0f53faf3-f4bd-4ec3-96e5-20a6aeb2ac7e.jpeg","fifu_image_alt":"","footnotes":""},"categories":[1],"tags":[74894,74863,74864,74882,117],"class_list":["post-526990","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-general","tag-blockchain","tag-cryptocurrencies","tag-gemini","tag-hacks","tag-business"],"_links":{"self":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/526990","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/comments?post=526990"}],"version-history":[{"count":0,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/posts\/526990\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media\/526991"}],"wp:attachment":[{"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/media?parent=526990"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/categories?post=526990"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/buradabiliyorum.com\/en\/wp-json\/wp\/v2\/tags?post=526990"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}