BlockFi, FTX downplay data breach involving claims administration platform Kroll

The breach Thursday calls into question the security measures employed by the third-party vendor

article-image

John Hanson Pye/Shutterstock, modified by Blockworks

share

Embattled crypto firms BlockFi and FTX said they have both been indirectly affected by a cybersecurity breach involving third-party claims administration platform Kroll. 

BlockFi issued a statement on Wednesday attempting to assuage concerns that its internal systems and funds had not been affected by the breach that had occurred Tuesday. Kroll has reportedly confirmed unauthorized access to certain client data stored on its system.

Kroll is currently serving as the claims agent in the bankruptcy cases of both companies, facilitating the submission and administration of debtor claims through online portals

“To be clear, BlockFi’s internal systems and client funds were not impacted,” BlockFi said in its statement. “We understand this is frustrating. In the spirit of transparency, we wanted to make our clients aware of this incident before bad actors could utilize this information to clients’ detriment.”

Defunct crypto exchange FTX announced a similar incident, which it said had occurred on Kroll’s platform and that its own system and account passwords had also not been affected.

In a post on X, formerly Twitter, FTX said non-sensitive customer data of claimants had been compromised. Kroll has since taken measures to contain and remediate the incident, per the statement.

“Kroll is notifying affected individuals directly with measures that customers can take to protect themselves,” FTX said.

FTX collapsed late last year following allegations it had misappropriated customer funds through sister trading firm Alameda Research. BlockFi simultaneously fell victim to a liquidity crunch following its exposure to FTX through loans made to Alameda as well as funds trapped on FTX.

BlockFi is attempting to foil efforts by FTX, as well as former Singapore-based hedge fund firm Three Arrows Capital, over claims to billions of dollars they say are owed to them by the former crypto lender.

Both companies advised clients Thursday to remain vigilant for attempted fraud, phishing attempts and scam emails impersonating parties connected to the security breaches.

BlockFi also warned of an expected uptick in spam phone calls and phishing attempts against other bankrupt crypto firms in the weeks and months ahead.

FTX and BlockFi said they were monitoring the situation. Blockworks attempted to contact Kroll but has so far received no response.


Get the news in your inbox. Explore Blockworks newsletters:

Tags

Upcoming Events

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

Industry City | Brooklyn, NY

TUES - THURS, JUNE 24 - 26, 2025

Permissionless IV serves as the definitive gathering for crypto’s technical founders, developers, and builders to come together and create the future.If you’re ready to shape the future of crypto, Permissionless IV is where it happens.

Brooklyn, NY

SUN - MON, JUN. 22 - 23, 2025

Blockworks and Cracked Labs are teaming up for the third installment of the Permissionless Hackathon, happening June 22–23, 2025 in Brooklyn, NY. This is a 36-hour IRL builder sprint where developers, designers, and creatives ship real projects solving real problems across […]

recent research

Research Report Templates.png

Research

Ethena Labs is leaping from its flagship synthetic dollar, USDe, to a full product suite—USDtb, iUSDe, and the Arbitrum-based Converge Chain—designed to marry crypto-native yields with TradFi-grade compliance. Our analysis shows how expanding into CME, ETF options, and tokenized Treasuries could lift protocol revenue from sub-$500 million in a bear case to several billion dollars if favorable regulation and institutional adoption align.

article-image

The L1’s Interwoven Stack is the most opinionated tech stack yet

article-image

Bitcoin is still rising, 11 years after the documentary film The Rise and Rise of Bitcoin

article-image

Arch Labs CEO told Blockworks that the team plans to launch a native token, but declined to give details

article-image

CEO Mike Silagadze tells Blockworks that the US is “open for business” and why its DeFi bank offering is the first of many

article-image

Doing one thing well and leaving everything else out is often what disruptive technologies do best