BitMEX accidentally leaks user email addresses
Crypto exchange is assessing extent of ‘software error’
Popular cryptocurrency exchange BitMEX has accidentally leaked its users’ email addresses by forgetting to blind copy (bcc) them on a mass email.
In an official statement BitMEX admitted the leak, saying, “We apologise for the concern this communication may have caused. This was the result of a software error which has now been addressed.”
There are concerns that the leak has made BitMEX account holders vulnerable to hacks, with hackers able to use proxies to break into email inboxes and other accounts.
It is thought that up to 22,000 users could be affected by the leak although exact figures are not clear. The exchange stated: “We take the security and privacy of our users very seriously and will take steps to ensure this does not occur again in the future.” The exchange, which is particularly popular in Asia, is located in Hong Kong.
According to crypto Twitter account @Rhythmtrader, it would appear the exchange’s twitter account was hacked, though this issue was quickly resolved.
BitMEX is looking further into the incident and has asked its users to add BitMEX’s support email to their contact lists and use 2-factor authentication in order to limit phishing emails.
Another major crypto exchange Binance has recommended its users who also have BitMEX accounts to change their Binance account email immediately.
Before the leak, BitMEX had announced its plan to introduce major changes to the weight of its cryptocurrency price indices by the end of the month.
BitMEX is currently under investigation by the US Commodity Futures Trading Commission (CFTC) for allegedly allowing Americans to trade on the platform even though it is not registered with the CFTC.