Kraken's response to Ledger's security breach

Arguably more informative than Ledger's own response:​______________________________Hi xxxxx,You are receiving this email because Kraken Security has analyzed the data in the Ledger breach from July 2020* and we have identified that some of your information may have recently been exposed by the attackers.The exposed data contains email addresses for 1 million newsletter subscribers and personal information (including email addresses, full names, phone numbers, and postal addresses) for 272,000 Ledger customers.It is possible that you will receive increased attacks against your personal email address and phone number. If you ordered a product from Ledger, it is possible, though unlikely, that your physical address could be targeted as well.What You Should Do to Protect Yourself​Due to the nature of the Ledger breach you should be on the lookout for social engineering and phishing attacks targeting you specifically.These attacks will likely come in the form of an email, text message or phone call pretending to be an exchange (e.g. Kraken) or another service (e.g. Ledger).The attackers will likely try to get you to click on a link, respond to a request or install malicious software.Please use extra caution and read all communication multiple times. Be sure to check the sender and triple-check links before visiting and/or entering any information including usernames and passwords.Ensure you have Sign-in 2FA, ideally a YubiKey, on your Kraken account and any other online accounts that may be of interest to these attackers including your personal email account and other financial-related accounts.Contact your mobile phone carrier and put a lock on your SIM so it can’t be ported to another phone (e.g. SIM swap attack).Update the email associated with your Kraken account. To do this, sign in to your account, navigate to Settings > Account, enter your new email, and confirm the change with the codes that will be sent to both your old and new email addresses. Visit our Support Center for more information about email changes.For more information on securing your account and digital life, visit our Support Center.As always, we are committed to your security and want to make efforts to help our clients proactively protect themselves from potential malicious attacks.If you have any questions or concerns, please do not hesitate to reach out to us at support@kraken.com.The Kraken Team

Submitted December 24, 2020 at 03:05PM

No comments:

Post a Comment