Iranian crypto exchange Bit24.cash unintentionally exposed data from nearly 230,000 users due to a misconfigured storage system, Cybernews reported.
The breach included sensitive Know Your Customer (KYC) data like passports and credit cards. Despite Iran’s growing crypto reliance, this incident raises concerns about data protection.
Bit24.cash, with over 300 supported coins, had a misconfigured MinIO system, allowing unauthorized access to cloud storage with KYC data. Cybernews stressed the severity of compromised KYC data, posing risks of identity theft and fraud.
Bit24.cash denied the breach, labeling claims as “inaccurate and misleading,” asserting their secure systems. Security engineer Hossein Amini emphasized user safety and urged concerned users to contact support.
Amini stated, “We can confirm that our MinIO setup and cloud storage containers remain secure, and there has been no unauthorized access to any sensitive user data.”
The incident highlights the vulnerability of personal information on crypto platforms, with potential consequences for affected users and the broader crypto ecosystem in Iran.
Also Read: India FIU Issues Show Causes Notice to 9 Crypto Exchanges
