Canada markets open in 9 hours 9 minutes
  • S&P/TSX

    19,228.03
    -0.87 (-0.00%)
     
  • S&P 500

    4,128.80
    +31.63 (+0.77%)
     
  • DOW

    33,800.60
    +297.00 (+0.89%)
     
  • CAD/USD

    0.7965
    -0.0018 (-0.23%)
     
  • CRUDE OIL

    59.36
    +0.04 (+0.07%)
     
  • BTC-CAD

    75,989.33
    -450.07 (-0.59%)
     
  • CMC Crypto 200

    1,293.90
    +66.36 (+5.41%)
     
  • GOLD FUTURES

    1,739.20
    -5.60 (-0.32%)
     
  • RUSSELL 2000

    2,243.47
    +0.87 (+0.04%)
     
  • 10-Yr Bond

    1.6660
    +0.0340 (+2.08%)
     
  • NASDAQ futures

    13,795.00
    -34.50 (-0.25%)
     
  • VOLATILITY

    16.69
    -0.26 (-1.53%)
     
  • FTSE

    6,915.75
    -26.47 (-0.38%)
     
  • NIKKEI 225

    29,611.44
    -156.62 (-0.53%)
     
  • CAD/EUR

    0.6696
    -0.0008 (-0.12%)
     

Australian Crypto Exchange Exposes Personal Data of 270K Users

  • Oops!
    Something went wrong.
    Please try again later.
  • Oops!
    Something went wrong.
    Please try again later.
Sebastian Sinclair
·1 min read
  • Oops!
    Something went wrong.
    Please try again later.
  • Oops!
    Something went wrong.
    Please try again later.

BTC Markets, one of Australia’s biggest cryptocurrency exchanges, has accidentally exposed users’ personal data, raising the risk of phishing attacks.

As reported by Business Insider Australia on Wednesday, the exchange revealed the names and email addresses of over 270,000 users when it sent out mass emails. The error saw names and addresses placed in the “to” section rather than individually addressing each recipient or using blind carbon copy.

The emails were sent out in batches of 1,000 recipients and meaning the exposure to a bad actor was limited to the data of 999 individuals per email.

Related: OKEx CEO Says Exchange Updating Procedures to Prevent Repeat of Withdrawal Freeze Issue

However, “all account holders were affected.” BTC Market’s CEO Caroline Bowler said in a tweet “The email was sent in batches, rather than in bulk.”

Once initiated, the emails could not be stopped even after the error was noticed, according to the report.

While no passwords or financial data were included in the breach, email addresses can be used for targeted phishing campaigns, since the attackers know the individuals affected have cryptocurrency accounts.

The error highlights the risks that centralized exchanges can pose when it comes to user’s data and privacy.

Related: Crypto.com Secures Australian Financial Service License

See also: Crypto Exchange Liquid Says User Data Possibly Exposed in Security Breach

According to Business Insider, BTC Markets will report the breach to the Office of the Australian Information Commissioner, undertake an internal review and work to increase its security.

CoinDesk reached out to BTC Markets for comment, but did not receive a reply by press time.

Related Stories