A threat actor using the handle “UnicornLover67” claims to have dumped all KYC (Know Your Customer) data from the crypto bank visa card provider, Embily.com. The hacker has provided five sample PDFs to illustrate the scope of the data, which includes:
- Personal information: First name, last name, gender, birthdate, country, nationality, personal ID, document number (passport/driving license), document issue date, and expiry.
- Registration details: Email, phone number, IP address, device type, browser, etc.
- Identification documents: Front and back of IDs, selfies.
- Verification details: Face match evaluation, validation checks, registry checks, liveness video, document photo.
The hacker suggests that Embily.com should contact them to buy back and delete the data to prevent further exposure.
Second Alleged Data Breach: Fractal.id
In another post, the same threat actor targets Fractal.id, claiming to have stolen 55,000 KYC records. The stolen data includes:
- Personal information: Names, emails, phone numbers, physical addresses, crypto wallets, scans of physical documents.
- Additional details: Date of birth, scan details, liveness videos.
The hacker has mentioned that they will upload a censored sample and is waiting for Fractal.id to confirm or deny if they want to buy back the data. The hacker advises Fractal.id to buy the data back to ensure it is deleted securely.
Both breaches highlight the critical need for robust cybersecurity measures and immediate action by the affected companies to mitigate potential damage.