- Cryptocurrency exchange BuyUcoin got hacked, exposing data of over 300,000 users.
- BuyUcoin released a statement that denied the claim.
- The 6GB data dump on the MongoDB database contained BuyUcoin data.
Based on the research provided by Rajshekhar Rajaharia, the hackers penetrated the exchange three times in 2020. In addition, the hackers stole sensitive information of the users such as KYC details, user wallet information, and user bank records. Above all, the darknet community could access the stolen details from the exchange.
Trading in #cryptocurrency? 3.5 Lakh Users data including me leaked From @buyucoin. The leaked data contains Name, Email, Mobile, bank account numbers, PAN Number, Wallets Details etc. Again didn’t informed to affected users by company.
Story – https://t.co/rUrfSQ96Z1#InfoSec pic.twitter.com/1xFOtLcd8F
— Rajshekhar Rajaharia (@rajaharia) January 21, 2021
Aside from the other users, Rajshekhar said that his information also became vulnerable due to the said incident. He explained BuyUcoin hackers leaked about 6 GB of files containing the personal data of users, his included.
These events made BuyUcoin platform release an official statement to address all its users’ concerns. “Regarding the media report, we are thoroughly investigating each and every aspect of the report about malicious and unlawful cybercrime activities by foreign entities in mid-2020”, the team said.
Additionally, the hacking incident that involves the BuyUcoin crypto platform was linked to the infamous hacking group ShinyHunters. Specifically, ShinyHunters allegedly did various fraudulent activities such as sharing illegal information and selling companies’ databases.
Prior to the BuyUcoin hacking incident in 2020, ShinyHunters also cracked the system of Coinsecure exchange in 2018. Therefore, Coinsecure lost a whopping amount of 20 crore INR (about $2.7 million).
Moreover, crypto exchange hacking is not a new topic in the crypto world. In other words, there are many hackers in the crypto industry.