đ Fractal ID has just published a report on the data leak on July 14 due to reuse of compromised passwords from 2022.
- The compromised account belongs to an employee with admin rights, helping the attacker bypass the security system.
- The monitoring system locked the account for 29 minutes.
đ Root cause: Employees did not comply with security policies and reused passwords from previous hacks.
- Approximately 0.5% of users were affected, with data such as name, email, phone number, wallet address, and document images.
đ§ Fractal ID has:
- Disable all accounts in the compromised system.
- Enhance security measures such as stricter IP control.
đźââïž The company contacted the data protection authority and cyber police in Berlin, and cooperated with a cyber security service to monitor the stolen data.
đ€ Fractal ID's founders are committed to protecting user data and working towards a self-storage system.
What do you think about this incident? Comment below! âŹïž