While attackers claim to have obtained names and deposit amounts of eToro users, the company insists its systems were not breached. Threat actors claim they obtained a cryptocurrency investor email database from eToro, an Israeli social trading company with 30 million users. An ad on a popular hacking forum alleged the attackers obtained eToro investors’ names, email addresses, country of origin, IP addresses, deposit amounts, and deposit platforms. The supposed data sample attackers provided depicted the data of several individuals, revealing the worth of assets they hold. The sample accounts also have time stamps next to them. The latest timestamp is from the end of July 2022, indicating the data could be recent. Revealing such data poses significant threats to users. Threat actors could use the information to target victims with tailor-made attacks that build on user nationality and asset worth. The user who posted the data on the hacking forum was permanently banned, limiting any attempts to verify the legitimacy of the breach or pinpoint how the data was obtained. Meanwhile, eToro denied the company was involved in a data breach. “We are aware of the claims being made on the Breached Forum. Our investigations indicate that there has been no breach on eToro’s side, and we believe that any advertised data stems from another source unrelated to eToro,” the company told Cybernews.
Full story : eToro denies breach despite claims on hacking forum.