Nansen alerts users to security breach involving vendor

Some Nansen users had their email addresses, password hashes and blockchain addresses exposed in a recent third-party security breach

article-image

Nansen’s Alex Svanevik | Source: Ian Walton for Blockworks

share

Blockchain data analytics platform Nansen recently suffered a security incident that exposed some users’ email addresses and passwords.

The breach appears to have originated from a third-party vendor whose system was compromised, allowing an attacker to obtain admin rights to an account used for granting customer access to Nansen.

Nansen CEO Alex Svanevik stated that the company became aware of the attack on Sept. 20. Initial investigations indicate that about 6.8% of its users are affected by the breach.

“These users had their email addresses exposed, a smaller portion also had password hashes exposed, and a last, smallest group also had their blockchain address exposed,” Svanevik said in an X post on Friday.

“We have informed our users via email if and how they’ve been affected,” he added.

Loading Tweet..

A Nansen spokesperson declined to disclose the name of the vendor, but said it has asked them to communicate on the incident publicly in case others are affected.

Nansen contacted affected users via emails sent from its official [email protected] email address on Sept. 21 between 5 pm and 9 pm UTC, instructing them to reset their passwords.

The team also informed users that while their passwords are not stored in plaintext, malicious attackers could still attempt to gain access to accounts using the compromised password and email address.

Data breaches have become increasingly frequent in the industry of late.

NFT platform OpenSea told users about a data breach in June last year when staff discovered that email addresses had been shared with an external party.

Last month, ConsenSys disclosed that about 7,000 MetaMask users had their private information, including email addresses, compromised between Aug. 2021 and Feb. 2023.

Also in August, embattled crypto companies BlockFi and FTX also reported being indirectly impacted by a cybersecurity breach related to third-party claims administration platform Kroll.


Start your day with top crypto insights from David Canellis and Katherine Ross. Subscribe to the Empire newsletter.

Explore the growing intersection between crypto, macroeconomics, policy and finance with Ben Strack, Casey Wagner and Felix Jauvin. Subscribe to the On the Margin newsletter.

The Lightspeed newsletter is all things Solana, in your inbox, every day. Subscribe to daily Solana news from Jack Kubinec and Jeff Albus.

Tags

Upcoming Events

Salt Lake City, UT

MON - TUES, OCT. 7 - 8, 2024

Blockworks and Bankless in collaboration with buidlbox are excited to announce the second installment of the Permissionless Hackathon – taking place October 7-8 in Salt Lake City, Utah. We’ve partnered with buidlbox to bring together the brightest minds in crypto for […]

Salt Lake City, UT

WED - FRI, OCTOBER 9 - 11, 2024

Permissionless is a conference for founders, application developers, and users. Come meet the next generation of people building and using crypto.

recent research

Unlocked by Template (2).jpg

Research

Vertex has established itself as a formidable player in the perps DEX landscape. Its strategic approach to chain expansion, focusing on EVM-compatible networks and leveraging incentive programs, has proven largely successful. The reduced time-to-launch for each new chain integration highlights the team's growing expertise and the scalability of their technology. As Vertex continues to expand, it is well-positioned to capitalize on the increasing fragmentation of the perpetual DEX market, potentially consolidating liquidity across multiple chains through its Edge technology.

article-image

The goal of Tuesday’s inaugural Congressional hearing on DeFi was to “explore emerging topics” in digital assets, Rep. French Hill said

article-image

Blockworks Research analyst predicts 2025 will be a big year for economic changes on Solana

article-image

A tech industry coalition executive last week urged moderators to ask about crypto, noting that “passing bipartisan digital asset regulations is front and center this election cycle”

article-image

BitGo’s using a 1-2-of-3 decentralized verifier network involving LayerZero Labs and Polyhedra

article-image

The challenge of securing our digital world lies in developing conflict-resistant digital infrastructure

article-image

The three actively managed funds target equities in the blockchain and AI realms while seeking to manage volatility