Robinhood data breach details: is stock trader information affected?
Robinhood, the already controversial online trading platform, announced Monday that a fraudster “socially designed a customer support employee over the phone and gained access to certain customer support systems.” having access to lists of names and email addresses for millions of customers.
The company said the scammer accessed a list of around five million people’s email addresses and a separate list of around two million full names. About 310 people had their name, date of birth and zip code exposed, while about 10 Robinhood customers had “more detailed account details revealed.” Robinhood reaches out to those affected.
The hacker demanded a ransom payment and Robinhood has contacted law enforcement and is working with cybersecurity Mandiant to continue the investigation, the company statement said.
Robinhood said people who want to change their security settings can access their website’s security menu. The National Cybersecurity Alliance, an industrial group, advised Robinhood clients change their passwords and set up multi-factor authentication as a precaution.
Robinhood has warned customers that it will not send links to access their accounts in emails, possibly concerned about potential phishing attacks using the leaked email addresses.
This is far from the first problem Robinhood encountered, which was one of the pioneers in commission-free online stock trading, now an industry standard. Last year, the company agreed to pay $ 65 million to settle claims by the Securities and Exchange Commission that it misled clients about how it makes money, which involved payments financial companies to which it routed customer orders. The SEC said this helped lower stock prices for its clients.
Robinhood clients have also had difficulty trading stocks and cryptocurrencies, often in times of volatility, including this year’s stock market boom.