BitMEX Exposes Customer Email Data, Affecting ‘Majority’ of Users

Digital currency derivatives exchange BitMEX sent on November 1 a mass email to its clients with their email addresses in the “To” field, breaching their security. 

Confirming the concern, BitMEX said Friday that “it is aware that some of our users have received a general user update email earlier today, which contained the email addresses of other users.”

A Twitter client with the handle @sakuraricebird shared screen captures of the email, which shows a few email IDs of BitMEX’s clients.

“The privacy of our users is a top priority and we are very sorry for the concern this has caused to our users,” said BitMEX, including that it is investigating the issue to recognize the main driver.

The deputy COO of BitMEX, Vivien Khoo, revealed that the email was sent to “the majority of our users, however not all were affected,” saying that the issue happened because of “an error in the software script used to send the emails.”

Khoo added that no other individual information or record data had been revealed.

On Friday, BitMEX reported that it is updating weights of its indices on November 22 to guarantee the reference prices more intently mirror the market consensus.

Taking the chance, BitMEX competitor Binance published on Twitter that if BitMEX’s affected clients additionally have an account with Binance under a similar email address, they need to consider changing their email addresses right away. Binance CEO Changpeng “CZ” Zhao, then again, prompted clients to utilize unique email addresses and passwords for each exchange and to utilize a password manager.