BTC 0.53%
$63,101.09
ETH 1.20%
$2,473.92
SOL 0.72%
$146.65
PEPE 1.35%
$0.0000099
SHIB 0.89%
$0.000017
BNB 0.44%
$576.01
DOGE 0.74%
$0.11
XRP -0.13%
$0.53
Best Crypto Poker
Online

Iranian Crypto Exchange Bit24.cash Reportedly Exposes Sensitive Data of Nearly 230K Users

Data Breach Iran
Last updated:
Author
Author
Sujha Sundararajan
About Author

Sujha has been recognised as 🟣 Women In Crypto 2024 🟣 by BeInCrypto for her leadership in crypto journalism.

Last updated:
Why Trust Cryptonews
With over a decade of crypto coverage, Cryptonews delivers authoritative insights you can rely on. Our veteran team of journalists and analysts combines in-depth market knowledge with hands-on testing of blockchain technologies. We maintain strict editorial standards, ensuring factual accuracy and impartial reporting on both established cryptocurrencies and emerging projects. Our longstanding presence in the industry and commitment to quality journalism make Cryptonews a trusted source in the dynamic world of digital assets. Read more about Cryptonews
Source: Pixabay

Iranian crypto exchange Bit24.cash users reportedly suffered a significant data breach exposing sensitive data of nearly 230K citizens. However, the exchange dismissed the allegation as “wholly untrue.”

The breach was attributed to an alleged misconfigured storage system used by the exchange, according to a team of researchers at Cybernews, who initially brought the allegations to light.

The misconfigured MinIO object storage system was left unprotected, granting access to S3 buckets containing users’ KYC documents. The data had information including consent letters, passport information, and credit card details, the researchers explained.

“With access to such comprehensive personal and financial data, malicious actors could impersonate individuals, gain unauthorized access to accounts, execute fraudulent transactions, and potentially cause substantial financial and personal harm to the affected users.”

Cybernews researchers later said that the storage is now secure and inaccessible.

Bit24.cash is among the top 5 largest crypto exchanges in Iran, according to TRMlabs insights. The nation adopted a pro-crypto stance in 2019 to circumvent the sanctions imposed against it.

Bit24.cash – “Wholly Untrue”


In response to the claims, the exchange vehemently refuted the allegation calling it “inaccurate and misleading.”

Hossein Amini, a security engineer at bit24.cash, assured that there is no evidence of data breach or unauthorized access to sensitive data and that user security remains Bit24.cash’s ‘utmost priorities.’

“The reference to a misconfigured MinIO instance granting access to S3 buckets containing KYC data is wholly untrue and does not align with our system architecture or security protocols,” Amini said. He confidently asserted that their MinIO instance and S3 buckets remain secure.

Several breaches have occurred in the past due to unsecured access to users’ information. The recent potential breach of Strike, a Bitcoin Lightning-based payment platform, flagged by online sleuth ZachXBT, claimed to have exposed private emails of users.

More Articles

Altcoin News
Analysts Point to 3 Key Metrics Signaling ‘Up-Only Season’ for Altcoins
Ruholamin Haqshanas
Ruholamin Haqshanas
2024-10-12 16:00:00
Price Analysis
XRP Price Forecast as Ripple Co-founder Donates $1 Million in XRP to Harris Campaign
Arslan Butt
Arslan Butt
2024-10-12 10:09:31