Crypto.com Responds to Alleged Data Breach of 2023
Crypto.com, a leading cryptocurrency exchange, has strongly denied allegations that it concealed a 2023 data breach involving user information. The claims followed comments from cybersecurity experts and blockchain investigators.
According to Bloomberg, Noah Urban, a member of the hacking group Scattered Spider, accessed a Crypto.com employee account via phishing before early 2023, leaking limited personal information. Blockchain investigator ZachXBT later claimed on X that Crypto.com ‘covered up a breach’ while referencing several past incidents.
Industry critics emphasized the need for transparency, especially following recent Coinbase user data leaks.
🔐 Company Clarifies Impact
A Crypto.com spokesperson told Cointelegraph:
“A phishing attack against one of our employees was the incident in 2023. Very few individuals’ PII was exposed, but we contained the attack within hours. Client funds were safe at all times.”
The company also confirmed that it submitted a Notice of Data Security Incident with the Nationwide Multistate Licensing System and reported the issue to relevant regulators.
It remains unclear whether impacted users were directly notified, and Crypto.com has not immediately responded to requests for further clarification.
Also Read : US House Looks at Market Structure Bill to Ban CBDCs by the Fed
⚡ CEO Denounces Misinformation
Crypto.com CEO Kris Marszalek described the allegations on X as misinformation from uninformed sources.
“We reported or disclosed a security incident appropriately,” a Microsoft spokesperson added, confirming the company followed proper disclosure protocols in the U.S. and with regulators.
These statements aim to reassure the public and rebuild confidence after scrutiny over the incident.
Connections with Industry and Wider Context
Earlier this month, Trump Media & Technology Group, owner of Truth Social, partnered with Crypto.com to establish a Cronos (CRO) treasury. This highlights growing links between the crypto industry and high-profile political actors.
While the 2023 phishing incident did not impact user funds, it underscores ongoing cybersecurity and regulatory clarity challenges within the crypto space.
