Robinhood on Monday warned customers that hackers broke previous inheritor well past the stock-trading app’s defences, stealing tens of millions of consumer electronic mail addresses and extra.
The perpetrator referred to as buyer assist and, pretending to be a licensed celebration, duped a Robinhood worker into offering entry to the client assist laptop system, a hacker approach known as “social engineering,” the corporate stated in a weblog submit.
After stealing data from Robinhood, the hacker tried to extort fee from the corporate, which opted to alert police and warn customers in regards to the breach, in accordance with the submit.
“We owe it to our prospects to be clear and act with integrity,” Robinhood chief safety officer Caleb Sima stated within the submit.
“Following a diligent evaluate, placing the complete Robinhood group on discover of this incident now could be the suitable factor to do.”
The breach passed off late on November 3, with the hacker snatching about 5 million electronic mail addresses for Robinhood customers, together with the names of about two million different members of the funding service, in accordance with the corporate.
Robinhood stated it additionally appeared that the hacker acquired maintain of names, start dates and zip codes related to 310 customers, plus extra account particulars about a few of these folks.
“The assault has been contained and we consider that no Social Safety numbers, checking account numbers, or debit card numbers have been uncovered and that there was no monetary loss to any prospects on account of the incident,” Robinhood stated within the submit.
Hackers may use the stolen data to attempt to trick Robinhood members with ruses reminiscent of “phishing” emails pretending to be the corporate.
Robinhood has been credited with introducing a era of recent particular person traders to the inventory market, however the platform can be identified for options that critics say could make it addictive.
Sport-like facets of Robinhood have additionally raised issues that customers could overlook critical monetary ramifications of investing.