CoinGecko, the prominent independent cryptocurrency data aggregator, has confirmed that its third-party email platform, GetResponse, was the source of a data breach on June 5, 2024. The incident highlights the importance of robust security measures in handling sensitive user data.

Breach Details

• Detection and Investigation:
  • At approximately 06:30 AM UTC on June 5, 2024, CoinGecko’s security team noticed unusual activity within their GetResponse account.
  • Further investigation revealed that an unauthorized party had compromised a GetResponse employee’s account, leading to the breach.
• Data Export:
  • The attacker gained access to CoinGecko’s GetResponse account and exported 1,916,596 contacts.
  • Subsequently, the attacker used another GetResponse client’s account (alj.associates) to send phishing emails to 23,723 recipients.
• User Impact:
  • Personal information exposed includes users’ names (if provided during sign-up), email addresses, IP addresses, and metadata related to email opens.
  • CoinGecko promptly notified affected users via email, emphasizing vigilance against potential phishing attempts.

Mitigation Measures

• CoinGecko is actively collaborating with GetResponse to investigate the incident and prevent future breaches.
• Enhanced security protocols are being reviewed and implemented.
• Users are advised to remain cautious and verify the legitimacy of any communication related to CoinGecko.

Unauthorized Token Airdrops

• CoinGecko warns users about unauthorized emails claiming to offer token airdrops. These communications are not officially issued by CoinGecko or GeckoTerminal.

CoinGecko appreciates users’ understanding during this incident and apologizes for any inconvenience caused. For further assistance, users can visit CoinGecko’s support portal.