According to an online monitoring web portal called, Under the Breach, a hacker is purportedly trying to sell customer information that stems from companies like Keepkey, Trezor, Ledger, and even the investment platform Bnktothefuture. The hacker doesn’t seem to have any passwords, but is offering detailed information that was stolen from a Shopify breach like email addresses, home addresses, and phone numbers.
The cybercrime resource known as Under the Breach has disclosed that customers who have purchased products using Shopify and purchased items from companies like Ledger, Trezor, Keepkey, and even Bnktothefuture may have had their identities leaked.
The hacker is said to be the same person that attacked the forum Ethereum.org and he claims to have a massive cache of customer information.
The Ethereum forum hacker is now selling the databases of @Trezor and @Ledger.
Both of which obtained from a @Shopify exploit.
(suggesting there are many more underground leaks).The hacker also claims he has the full SQL database of famous investing site @BankToTheFuture. pic.twitter.com/4M3f2bQKvB
— Under the Breach (@underthebreach) May 24, 2020
Under the Breach documents show that the hacker has three large databases with information pertaining to an alleged 80,000 customers. This includes the customer’s email address, name, phone number, residential address, and other pieces of data.
The databases from Shopify are allegedly tied to Ledger, Trezor, and Keepkey. However, on May 24, 2020, the firm Ledger addressed the Shopify discussion and called it a “rumor.”
“Rumors pretend our Shopify database has been hacked through a Shopify exploit,” Ledger tweeted. “Our ecommerce team is currently checking these allegations by analyzing the so-called hacked DB, and so far it doesn’t match our
