Nansen Discloses Data Breach Affected 6.8% Of Its User

Key Points:

• Nansen discloses a data breach impacting 6.8% of its users due to a third-party supplier vulnerability.
• Exposed data includes email addresses, some password hashes, and group blockchain addresses.
• Nansen initiates immediate security measures, urging affected users to reset passwords.

In an official statement released today, Nansen, a leading blockchain analytics platform, revealed that it had experienced a data breach resulting from a vulnerability in a third-party supplier’s systems. The breach has affected approximately 6.8% of Nansen’s user base.

Nansen Discloses Data Breach: User Remain Safety

According to Nansen, the breach exposed certain user data, including email addresses, a subset of password hashes, and some group blockchain addresses. However, the company emphasized that it does not store passwords in plaintext, reducing the risk associated with this aspect of the breach.

The incident unfolded when Nansen was alerted by one of its third-party vendors on September 20 that their systems had been compromised. This breach granted unauthorized access to an account used to provide customer access to Nansen’s platform. Immediate action was taken to halt the unauthorized access, and an extensive investigation was launched.

Nansen’s Data Breach Response: Prioritizing Security and Transparency

The affected users have been notified via email about the breach and have been urged to reset their passwords as a security measure. The password reset window was open between 5 pm and 9 pm (UTC time) on September 21, and Nansen sent notifications from the address support@nansen.ai. Additionally, users have the option to manually reset their passwords at pro.nansen.ai/reset.

For those impacted, Nansen recommends changing passwords promptly to safeguard their accounts against potential brute force attacks, even though passwords are not stored in plaintext. Nansen also assured users that their wallet funds remain unaffected, as the company never requests private keys.

To prevent falling victim to phishing attempts, Nansen users are advised to exercise caution and verify the sender of any communication purportedly from Nansen.

DISCLAIMER: The information on this website is provided as general market commentary and does not constitute investment advice. We encourage you to do your own research before investing.