Coincheck confirms data breach, exposing personal information
Information that has been leaked, includes: users' names, registered addresses, birth dates, phone numbers and selfie IDs.
The breach has impacted approximately 200 customers who had made email inquiries from 31 May 31 to 1 June 2020. Coincheck said that an unauthorised third party accessed its domain registration service and “fraudulently” accessed customer emails. Since the announcement, the Coincheck's domain registration has been amended.
Coincheck has since stated that there has been no impact on customers’ assets, and that:
Although there is no impact on your assets at this time, we will stop crypto remittance service again, considering the progress of the investigation by the domain registration service operator. Services such as depositing/withdrawing Japanese Yen and receiving/purchasing/selling crypto assets can be used as usual.
The exchange has subsequently suspended its digital currency remittance service, while keeping trading, deposits and withdrawals services active.
In January 2018, Coincheck suffered the one of the largest breaches in the history of the crypto industry, losing nearly $500 million in digital tokens. The exchange is now a licensed entity, after Japan-based online brokerage firm Monex Group later acquired Coincheck for $33.5 million.