-
Over 230,000 combined user records from Binance and Gemini have reportedly appeared for sale on the dark web.
-
The leaked information includes names, emails, phone numbers, and location details of the impacted users.
-
Security experts suggest the leaks stemmed from phishing attacks rather than direct system breaches of the platforms.
More than 100,000 users of popular crypto exchanges Binance and Gemini may be at risk after a trove of sensitive information appeared for sale on the dark web.
Dark Web Actors Are Targeting Crypto Users
On March 27, a dark web user operating under the alias AKM69 listed a large database allegedly tied to Gemini, one of the largest crypto trading platforms in the US. The dataset mainly includes information about users from the United States, with few entries from Singapore and the United Kingdom. The attacker claims the data could be used for marketing, fraud, or crypto recovery scams.
“The database for sale reportedly includes 100,000 records, each containing full names, emails, phone numbers, and location data of individuals from the United States and a few entries from Singapore and the UK,” the report stated.
It is unclear whether the leak resulted from a direct breach of Gemini’s systems or from other vulnerabilities, such as compromised user accounts or phishing campaigns.
Meanwhile, this incident followed another alarming listing on March 26. According to the report, a separate dark web actor, kiki88888, allegedly offered a trove of Binance user data for sale. The database is said to hold over 132,000 entries, including the exchange users’ login information.
The Dark Web Informer suggests phishing attacks likely caused the breach rather than a compromise of the exchange’s systems. “Some of you really need to stop clicking random stuff,” the Informer stated.
Binance and Gemini have yet to publicly comment on these incidents. However, phishing remains one of the most effective methods cybercriminals use to exploit crypto holders, impersonating official accounts or placing misleading ads that redirect users to fake websites.
As COINOTAG reported earlier, in March, Coinbase users lost over $46 million to social engineering scams. Blockchain security firm Scam Sniffer revealed that phishing-related losses exceeded $15 million in the first two months of the year, highlighting the growing scale of the threat.
Given the rising threats, crypto users should stay vigilant and avoid unfamiliar links. They should also protect their accounts with two-factor authentication and hardware wallets whenever possible.
Conclusion
With sensitive user data surfacing on the dark web and cybercriminals targeting exchanges like Binance and Gemini, users must prioritize their security. Vigilance and proactive measures such as two-factor authentication and careful scrutiny of links can help mitigate risks in this increasingly treacherous landscape.
