MetaMask Third-Party Hack Could Affect 7000 Users

MetaMask announced over 7,000 users are at risk due to a recent hack. ConsenSys, the parent company of the widely-used crypto wallet, broke the news in an April 14 blog post. What do we know about the MetaMask hack?

Thousands of MetaMask users’ private info may have been stolen by hackers
Image Credit:

What do we know about the MetaMask hack?

ConsenSys revealed that the private information of people who had filed support tickets between August 1, 2021 and February 10, 2023 might have been leaked. Apparently, hackers gained unauthorized access to a third party computer system used to process customer service issues. This breach could allow bad actors to view the support tickets users submitted.

The tickets included a blank field that some users might have used to include personal information. The blog posted states that ConsenSys did not prompt users to populate the field, but people might have done so anyway. Some information that people might have added includes “economic or financial information, name, surname, date of birth, phone number, and postal address.”

In total, MetaMask estimates up to 7,000 users may be affected. As a response, ConsenSys and hardware wallet providers are warning customers to be on the lookout for an increase in phishing scams as attackers may use the leaked data as a source for potential victims.

MetaMask is working with law enforcement agencies after a recent data hack
Hackers were to break into the system of a third-party with access to personal customer information
Image Credit: Pentas NFT Marketplace

Did ConsenSys fix the problem?

ConsenSys has reportedly eliminated the unauthorized leak and tickets submitted after February 10, 2023 should be safe. Since then, the Web3 company has alerted law enforcement agencies to the hack and is conducting a more detailed investigation into the issue.

It’s not the first time MetaMask has experienced security issues, unfortunately. Previously, the Web3 community criticized MetaMask for logging users’ IP addresses. This could have led to hackers pinpointing geographical locations for crypto holders.  This is a huge risk for anyone who self-custodies a large amount of digital assets.

Fortunately, it seems like this hack has been relatively minor. It does serve as a helpful reminder to allows follow good security measures when handling crypto assets, however.




All investment/financial opinions expressed by are not recommendations.

This article is educational material.

As always, make your own research prior to making any kind of investment.

Source link

Leave a Reply

Your email address will not be published. Required fields are marked *