We recently reported on a potential data theft at Bitfinex. Bitfinex’s CTO, Paolo Ardoino, has made a statement addressing the concerns, urging calm regarding a possible database breach. Let’s delve into the details.
Bitfinex Executive Provides Update
According to Paolo Ardoino‘s statement, the sample data includes 22,500 email and password records. Ardoino clarified that they do not store plain text passwords or 2FA in plain text. Only 5,000 of the 22,500 emails matched Bitfinex users.
The hackers have not contacted Bitfinex. Ardoino continued in his statement:
If they truly had significant information, they would have made a request through our bug bounty, customer support ticket, etc. We found no such requests.
As far as we can gather, the hackers likely compiled an email/password database from various crypto breaches. Unfortunately, many users reuse the same email/passwords across multiple sites.
We are conducting thorough analyses on our systems and have not detected any breaches so far. Additionally, our KYC platform has a heavy rate limitation that does not allow bulk downloads. While we believe this to be entirely FUD, we will continue to review the information to ensure nothing is overlooked.
Funds are safe.
