"Phishing Attack Impacts Over 92,000 Transak Users"
Transak, a fiat-to-crypto payment gateway provider, recently reported a security incident that has impacted 92,554 of its users. According to Transak, attackers gained unauthorized access to one of their employee laptops through a sophisticated phishing attack. The firm noted that the attacker used compromised credentials to log in to the system of a third-party KYC vendor that the company uses for document scanning and verification services. The attacker then gained access to user information stored within the vendor's dashboard. Transak said personal information including names, dates of births, user selfies, and passport and other ID documents were accessed. Transak noted that no financially sensitive information, including email addresses, phone numbers, passwords, credit card details, or Social Security Numbers, were compromised. The company explained that because it operates as a fully non-custodial platform, user funds, whether fiat or cryptocurrency, are never held by Transak and remain secure and unaffected by any such attack.
Infosecurity Magazine reports: "Phishing Attack Impacts Over 92,000 Transak Users"