Following a security compromise that impacted 1,590 cryptocurrency wallets, CoinStats, a cryptocurrency portfolio manager, has temporarily ceased user activity.
In an X post from June 22, CoinStats stated, “The attack has been mitigated, and we have temporarily shut down the application to isolate the security incident.”
It further stated that “none of the connected wallets and CEXes were impacted” and that “only 1.3% of all CoinStats Wallets were affected, totaling 1,590 wallets,” because of the CoinStats team’s quick incident reaction.
Impact of the security incident is still unclear
The nature of the security breach’s impact on the wallets was not disclosed by CoinStats, but they assured users that they will offer “updates as soon as they become available.”
The portfolio manager claims on its website that users’ holdings are “perfectly safe under any conditions” because it “asks for read-only access” to associated cryptocurrency wallets.
Users of the site can connect all of their cryptocurrency wallets and use it to track their whole cryptocurrency portfolio, viewing all of their wallets in one location.
A Google document compiled by Coinstats lists every cryptocurrency wallet that is currently impacted. The list “might change” as the investigation goes on, but major adjustments are not anticipated.
It said, “Please move your funds immediately using your exported private key if your wallet address is in this affected list.”
Nonetheless, victims on the list were cautioned by members of the crypto community to be wary of con artists posing as helpers.
Scammers are cunning. Scammers might be attempting to get in touch with you in an attempt to “help” you if your address is on this list or if you have used Coinstats and commented about it. Never trust anyone, wrote anonymous crypto analyst PPman.
More cryptocurrency companies are experiencing security lapses
It follows a number of cryptocurrency platforms that recently had security breaches.
Recent confirmation of a data breach by its third-party email management platform GetResponse was made by cryptocurrency data aggregator CoinGecko.
Over 1.9 million CoinGecko users’ contact information was exported by attackers, according to CoinGecko’s confirmation on June 5.
On June 12, Crystal Intelligence disclosed that over the previous 13 years, there have been 785 documented breaches and attacks in the cryptocurrency space.
Since June 19, 2011, when the first known crypto theft was announced, about $19 billion worth of digital assets were stolen.