Twilio, the developer of the Authy authenticator app, said hackers gained access to the Authy Android app’s database and “were able to identify account-related data, including phone numbers,” according to Cointelegraph. The accounts themselves “were not compromised,” meaning the attackers were unable to obtain authentication credentials. But the exposed phone numbers could be used in “phishing and phishing attacks” in the future. Centralized exchange users often rely on Authy for two-factor authentication (2FA). Both Gemini and Crypto.com use Authy as their default 2FA app, while Coinbase, Binance, and many other exchanges allow it as an option.