Users of Indian crypto substitution BuyUCoin take reportedly been afflicted by a alienation compromising personal data of more than 325,000 people.

According to a report from Indian news outlet Inc42, a hacking group by the proper noun of ShinyHunters leaked a database containing the names, phone numbers, email addresses, revenue enhancement identification numbers and bank account details of more than 325,000 BuyUCoin users. However, a later written report from Bleeping Estimator shows the leaked data may merely contain information from 161,487 BuyUCoin members.

Cybersecurity researcher Rajshekhar Rajaharia posted screenshots of the leaked data — recorded until September 2020 — to Twitter final week, which included trading activeness and BuyUCoin referral codes.

BuyUCoin initially claimed that "non fifty-fifty a single customer was affected" past the data breach and referred to the reports as "rumors," but has since released a statement saying it was "thoroughly investigating each and every aspect of the study about malicious and unlawful cybercrime activities by foreign entities." The exchange added that all user funds were "rubber and sound within a secure environment" as it reported 95% were kept in common cold storage.

Though no funds have reportedly been affected in the breach of the commutation, at that place are even so potential risks to BuyUCoin users. Similar the exchange's customers, Ledger users had their personal data compromised in a June and July 2020 data alienation affecting 272,853 people who ordered hardware wallets. Some users accept since reported receiving threatening emails with demands for a crypto ransom to be paid within 24 hours or they volition face up "horrifying" consequences.

While real world attacks to steal crypto are much rarer than hacks or scams, they do occur. Whether concerned for their data or their physical well being, some BuyUCoin users expressed their frustration with the reports of the breach.

"What if someone used my account in whatsoever illegal activity?" said Rajaharia — also a BuyUCoin user — in a follow-up tweet, calling the substitution's initial response "irresponsible."

Cointelegraph reached out to BuyUCoin CEO Shivam Thakral for comment, but did non receive a response at the time of publication.