"Betterment, which allows customers to invest in crypto, also published an announcement about the breach on its website, but did not disclose how many customers were targeted, nor how many had their personal information accessed, stolen, or seen by the hackers. Betterment added that it detected the attack on the same day and "immediately revoked the unauthorized access and launched a comprehensive investigation, which is ongoing," with the help of an unspecified cybersecurity firm."
"In an email sent on Monday, which TechCrunch has seen, Betterment said that hackers gained access to some company systems on January 9 by way of a social engineering attack, which involved "third-party platforms" that the company uses for marketing and operations. The company said customer names, email addresses and postal addresses, phone numbers, and dates of birth were compromised in the attack."
Hackers gained access on January 9 via a social engineering attack that involved third-party platforms used for marketing and operations. Customer names, email addresses, postal addresses, phone numbers, and dates of birth were compromised. Attackers used the access to send a fraudulent notification promising to triple crypto value if users sent $10,000 to a wallet controlled by the attacker. Betterment detected the intrusion the same day, revoked the unauthorized access, and launched a comprehensive investigation with an unspecified cybersecurity firm. The company reached out to targeted customers and advised them to disregard the message. The ongoing investigation indicates no customer accounts or login credentials were accessed, and the security incident page contains a hidden noindex tag.
Read at TechCrunch
Unable to calculate read time
Collection
[
|
...
]