Reports highlighted that a phishing attack aimed at a HubSpot member was the procedure applied by the attacker to extract the information of the harmed entities. The latter notified their users to apply protective measures against the attack.
Recently published reports highlighted that companies such as Circle, BlockFi, Pantera Capital, NYDIG, and many others in the crypto space became victims of a security breach in which attackers managed to extract meaningful information linked to users of these companies.
Theft of User Data from HubSpot
According to reports, the companies revealed that the security breach was present at the HubSpot marketing and sales company level, which brings a variety of services to the affected entities. Therefore, the security breach happened through a third party, the victim of an attack where the data got extracted.
On the other hand, Pantera highlighted that its “Internal Systems” did not receive damage during the incident. The responsible attacker could not enter any of the data handled by the company, which had important info such as social security numbers or even government ID.
According to Circle, the company similarly informed its users and expressed that customers’ contact information got extracted. The company also added that Customer funds, financial transaction data, and information directly connected to the Know Your Customer (KYC) system did not receive harm.
Some Important Aspects About the Attack
Regarding the attack against HubSpot, the company brought details about the event in a publication made through its official blog. It highlighted that it took place last weekend and that a possible attack by a Phishing guy targeted one of the workers.
HubSpot did not reveal which companies got harmed after the attack. Still, this information appeared because the same entities notified their users through emails to warn them about what had just happened. At the moment, the global scope of the attack remains unclear since the amount of data that got extracted remains unknown.
In this regard, the founder of the antiphishing service used by Cloudflare, Oren Falkowitz, highlighted that it was pretty obvious that the primary cause of the attack against HubSpot was phishing. Phishing attacks continue to be the main cause of at least 95% of phishing attacks.
What’s so destructive about these attacks is that they start a chain reaction of more phishing, which HubSpot customers are already reporting.
The Role of Data for Hackers
Regarding the destination of the data, analysts hypothesize that hackers could be interested in marketing them through dark web forums, a very common practice in which they get sold to the highest bidder for generally criminal purposes.
However, since the theft got aimed at entities like Circle and BlockFi, the attackers could also use this contact information to extract passwords and other vital information used to enter the accounts.
By: Jenson Nuñez
