The trading platform Robinhood has admitted a hacker attack. According to the company, millions of customer data such as email addresses and names were disclosed in the security breach.
In a press release, Robinhood stated that the incident was discovered on the evening of November 3rd and that an “unauthorized third party” had managed to obtain personal information from its customers. The company stressed that no social security numbers, bank account numbers, or credit card numbers were compromised.
However, the company admitted that information on approximately 7 million people leaked in the attack. The affected customers were notified by email.
The attacker apparently gained access to Robinhood systems via social engineering via a customer support employee. “As of this writing, we believe the unauthorized party has received a list of email addresses of approximately five million people and the full names of another group of approximately two million people,” the company said.
“We also assume that a limited number of people – around 310 total – have disclosed additional personal information such as name, date of birth and zip code, with a subgroup of around 10 customers disclosing additional account information. We are in the process of informing the persons concerned accordingly. “