Cryptocurrency exchange Poloniex has forced a password reset for all customers due to a leaked list of email addresses and passwords on Twitter.
On Dec. 30, the exchange emailed its customers to inform them that a list of leaked email addresses and passwords could potentially be used to log in to Poloniex accounts. The exchange forced a password reset on any email addresses that have an account with the exchange. The email reads:
“While almost all of the [leaked] email addresses listed do not belong to Poloniex accounts, we are forcing a password reset on any email addresses that do have an account with us, including yours.”
Poloniex customer thinks the exchange’s email is a scam
A Poloniex customer was convinced that the exchange’s email was a scam and took to Twitter to bring attention to the perceived hoax. This put Poloniex customer support into the awkward position of having to explain that the email was indeed real and not a scam. “This is a real email! Please reset your password for account security,” they responded.
It is unclear how the email addresses and passwords landed on Twitter in the first place, and what percentage of the leaked data actually contains current data from Poloniex customers.
Cointelegraph contacted Poloniex regarding these latest developments but had yet to receive a response as of press time. This article will be updated if comments come in.