Transak has reported a data breach affecting 1.14% of its users (92,554 people). Due to a phishing attack, an attacker gained access to a third-party KYC provider system, allowing them to view personal information, including names, dates of birth, documents, and selfies.
Financial information, such as emails, passwords, credit cards, and other data, was not compromised. Users' funds remain safe as the platform is non-custodial.
Transak has taken steps to mitigate the consequences of the incident and ensure data security in the future.