Having access to the data of customers of the Canadian cryptocurrency exchange Coinsquare, hackers intend to use the information to steal the cryptocurrency of users. To do this, fraudsters want to use swap SIM-cards, reports Motherboard, referring to the statement of hackers.
Coinsquare data leak occurred in 2019. According to Coins Diamond CEO Coinsquare, the culprit turned out to be one of the employees of the exchange. After the incident, Coinsquare specialists updated a number of operating systems and a policy for working with personal customer data. In the course of the investigation of the data leak, it turned out that its scope significantly exceeded the ones that the company confirmed. Coinsquare representatives, in turn, deny the presence of additional problems.
It is known that the hackers planned to implement these leaks in the darknet. Subsequently, the attackers decided to use the information to independently steal the cryptocurrency of the exchange users. For operations, fraudsters will need to attach a new SIM card to each of the accounts. To this end, hackers plan to work with mobile operators.
By linking the user's personal account to the new phone number, fraudsters will receive a key to pass two-factor authentication. As a result, hackers will have access to cryptocurrencies of exchange customers.
Users on the network noted that the disclosure of their plans by attackers looks illogical.
“Our goal is to disgrace the exchange, whose representatives called the project the safest trading platform in Canada, which is a lie,” the hackers who organized the leak explained their motives.
Previously, attackers confirmed the fact of the availability of databases of exchanges users. In their hands was information about the email addresses of customers, their phone numbers and other information.
Recall, Coinfirm researchers recognized Coinsquare as a low-risk exchange.