Indian crypto exchange CoinDCX said on Friday that some user data was exposed after a security breach at Mixpanel, a third party service provider. Mixpanel, which offers data analytics services to CoinDCX, faced a security breach on November eight. CoinDCX informed users through an email and said that its own infrastructure was not affected and that all funds were safe.
A person aware of the matter said that data such as user names and the duration of their activity on the platform was likely to have been exposed. The United States based company informed CoinDCX on November twenty five that some of its data had been accessed following the security incident.
In its email to users, CoinDCX said, “They confirmed that some of our CoinDCX users’ data was accessed. The security incident did not target CoinDCX specifically and included the broader customer base of Mixpanel. Mixpanel has no access to CoinDCX infrastructure or users’ funds.”
The company clarified that the incident was limited to Mixpanel’s systems and did not affect CoinDCX’s infrastructure, wallets, or user funds. It also stated that no sensitive information such as passwords, one time passwords, seed phrases, or critical KYC data was accessed. The company did not comment on how many users may have been affected. CoinDCX has more than twenty million registered users.
The company told users that it is working with its service provider to confirm that the breach has been contained. It has also started a full review of Mixpanel’s security practices, data minimisation, and its own vendor risk processes.
The company has warned users to stay cautious of unsolicited calls, messages, or phishing emails asking for personal information, including OTPs, passwords, PINs, bank details, or links to groups pretending to be official communication channels. It added, “CoinDCX will never ask for your password, OTP, or two factor authentication, never ask you to share your wallet seed phrase nor ask you to install remote access apps.”
This incident comes months after an alleged security breach in July that led to the loss of forty four million dollars. That incident also did not affect customer funds on the platform. At the time, Sumit Gupta, cofounder and chief executive officer of CoinDCX, said the company was set to absorb the lost amount.
Also read: Viksit Workforce for a Viksit Bharat
Do Follow: The Mainstream formerly known as CIO News LinkedIn Account | The Mainstream formerly known as CIO News Facebook | The Mainstream formerly known as CIO News Youtube | The Mainstream formerly known as CIO News Twitter
About us:
The Mainstream is a premier platform delivering the latest updates and informed perspectives across the technology business and cyber landscape. Built on research-driven, thought leadership and original intellectual property, The Mainstream also curates summits & conferences that convene decision makers to explore how technology reshapes industries and leadership. With a growing presence in India and globally across the Middle East, Africa, ASEAN, the USA, the UK and Australia, The Mainstream carries a vision to bring the latest happenings and insights to 8.2 billion people and to place technology at the centre of conversation for leaders navigating the future.
