The cyber-security issue which exposed the email addresses of certain MetaMask users who sent a support ticket to MetaMask between August 1, 2021, and February 10, 2023, were impacted.
As per an April 14 blog post, unauthorized actors may have viewed customer support tickets sent by MetaMask users after gaining access to the system that handled customer assistance.
These tickets requested the information that was required to assist the user. However, “free text-field,” was used by some users to enter their personal data which might have included economic or financial information, name, surname, date of birth, etc.
Hardware wallet provider Keystone alerted MetaMask users to the situation and advised them about phishing emails since the attacker might utilize this stolen email database to seek future victims.
Consensys made it clear that it does not request information during client chats and up to 7,000 MetaMask users who submitted customer support tickets may have been impacted by the hack.
Consensys claimed that it has upgraded its app in March and taken measures to prevent future unauthorized access. They informed the Information Commissioner’s Office in the UK and Data Protection Commission in Ireland. The cyber-security and forensics team is also collaborating with the company’s third-party customer service provider to conduct a thorough assessment.
Also read: MetaMask Introduces Feature to Simplify Crypto Purchase With Fiat
