Crypto lending service Celsius has suffered a data breach originating with an email vendor, resulting in customers being hit with scam emails.
Bad actors hacked a third-party distribution system, CoinDesk reports, quoting an email sent by Celsius to its customers.
According to CoinDesk, the email states: “An unauthorized party managed to gain access to a back-up third-party email distribution system which had connections to a partial customer email list.”
The email continues: “Once inside the system, this unauthorized party sent a fraudulent email announcement, of which we know some of the recipients to be Celsius customers.”
The third-party distribution system was not identified.