An ex-employee of cryptocurrency derivatives exchange Digitex began leaking stolen Know-Your-Customer (KYC) on Telegram. The stolen information reportedly includes passport and driving license scans and other sensitive documentation pertaining to more than than viii,000 Digitex customers.

The Republic of seychelles-based substitution issued Cointelegraph a argument indicating that it is not currently able to comment on the incident and is seeking legal counsel:

"Digitex Futures is aware of a leak of confidential data. We are not able to comment fully on the incident at this time and are currently seeking legal counsel. However, we tin confirm that this was not an external hack merely an internal security alienation orchestrated by an ex-employee with a conflict of interest against the company. Nosotros will be releasing more information on the incident every bit shortly as possible."

The extent of the Digitex breach is unknown

However, i source who is familiar with the matter told Cointelegraph that the data of 8,000 customers "has not been breached," adding:

"Only iii ids have been leaked although the perpetrator confirms that he has them all and is starting to post demands so as not to leak the rest."

On Telegram, the "Digileaker" has claimed to be in possession of "the unabridged KYC documentation of every single user who has used the Digitex Treasury from its inception date until today."

In an interview with cryptocurrency scam hunter CryptoVigilante, the Digileaker claimed to accept used login information obtained when Digitex registered with its KYC provider Sum and Substance.

According to the hacker, the login "gives unrestricted access to all the KYC information of 8000+ customers including documents, address, telephone numbers and other information like IP address."

Digitex data breach gains momentum

The Digitex debacle has escalated over recent weeks, starting with the ex-employee hijacking its Facebook account to publicly disclose users' e-mail addresses. In a Feb. 10 blog post, Digitex stated that the breach was an "internal upshot" that had been perpetrated by a "scheming and highly manipulative ex-employee."

The company also assured customers that "across their email addresses, no other sensitive information was gathered or released."

Crypto exchanges see several attacks during Feb

Digitex's data breach comes amid an increasing number of malicious attacks targeting cryptocurrency exchanges.

On Feb. 27, Okex and Bitfinex suffered simultaneous distributed denial of service (DDoS) attacks. While Okex's platform was "largely unaffected," Bitfinex entered into maintenance mode to quickly execute countermeasures and patch for all similar attacks.

On Feb. 28, the Tim Draper-backed Singaporean crypto commutation Coinhako appear that it has fully reimbursed all customers were afflicted past a "sophisticated attack" that began targeting the exchange 7 days prior.

The exchange responded by suspending transport functionality. Coinhako has since restored send capabilities for Bitcoin (BTC), Bitcoin Greenbacks (BCH), Ethereum (ETH), Tether (USDT), TrueUSD (TUSD) and USD Coin (USDC).