Robinhood is a US commission-free stock trading and investing platform, having as of March 2021 18 million accounts with over $80 billion in assets. On November 8, 2021, the company disclosed a data breach, where where on November 3, a threat actor gained access to the personal information of approximately 7 million customers. “Based on our investigation, the attack has been contained and we believe that no Social Security numbers, bank account numbers, or debit card numbers were exposed and that there has been no financial loss to any customers as a result of the incident” says the announcement.
“The unauthorized party socially engineered a customer support employee by phone and obtained access to certain customer support systems.” In total, the following was leaked:
- 5 million email addresses
- 2 million full names of a different group of customers
- 310 customers had their personal information, including name, date of birth, and postal zip code leaked
- 10 customers had more extensive account details leaked
Read more about it here.