HubSpot suffered a cyberattack in which data belonging to multiple high-profile cryptocurrency firms was taken, the company confirmed.
In a weblog post, HubSpot claimed that a bad actor compromised the account of one of its employees and used it to target clients of the service in the cryptocurrency industry.
HubSpot claims that the data was exported from "fewer than thirty HubSpot portals" and that the company notified each and every affected company, terminated the account, and altered their account privileges to ensure something like this doesn't happen again.
Pantera, Circle, BlockFi affected
Although HubSpot did not detail which companies were harmed, certain media managed to discover certain names. Decrypt published a letter that Pantera Capital, a US-based cryptocurrency hedge fund, sent to its clients of the service, which read: “Pantera uses Hubspot as its CRM platform. addresses, postal addresses, telephone numbers and regulatory classifications,
Pantera added that its internal systems were not compromised and that the threat actor did not have access to social security numbers or government IDs belonging to its customers of the service.
Other companies, according to the same source, include Circle, BlockFi and NYDIG. The full extent of the breach will surely become clear in the coming days and weeks, although Decrypt thinks it could be "essential."
Circle asserted to its service customers that the threat actor took the service customer's contact information, but did not take the service's funds, financial transaction data, and Know Your Customer (KYC) data.
"While our research is ongoing, we wanted to share these early findings, although we may learn ancillary facts from our research that cause the preceding details to change or evolve," HubSpot concluded.
No one has claimed responsibility for the attack, and we don't know what they're going to do with the data or how precisely HubSpot's endpoints were compromised. They will most likely seek to sell it on the black market, where it could be used by other threat actors for second-stage attacks.