According to TechCrunch, Byte Federal, a prominent Bitcoin ATM operator in the United States, has reported a data breach that may have compromised the personal information of thousands of its customers. In a recent filing with the attorney general of Maine, the Florida-based company disclosed that hackers attempted to access the data of approximately 58,000 customers. The compromised information includes names, addresses, phone numbers, government-issued IDs, Social Security numbers, transaction activity, and user photographs.
The breach reportedly occurred on September 30 and was discovered by Byte Federal on November 18. The company identified that an unnamed attacker exploited a vulnerability in third-party software to gain access to its network. In a blog post published in November, Byte Federal revealed that the vulnerability was found in the widely-used developer platform GitLab.
In response to the breach, Byte Federal, which operates over 1,200 Bitcoin ATMs across the U.S., has taken several measures to secure its systems. The company has performed a hard reset on all customer accounts and updated its internal passwords to prevent further unauthorized access. The incident highlights the ongoing challenges faced by companies in safeguarding sensitive customer data against cyber threats.