More than 230,000 user records from Binance and Gemini have reportedly surfaced for sale on the dark web, sparking new concerns over cyber threats in the crypto space. The leaked data includes full names, email addresses, phone numbers, and location details of affected users, with most entries linked to individuals in the United States, and a smaller number from the UK and Singapore.
On March 27, a dark web user known as AKM69 allegedly posted a database tied to Gemini, one of the leading crypto exchanges in the US. According to Dark Web Informer, this database contains around 100,000 records. The attacker claims the stolen data could be used for scams, targeted ads, or fraud attempts—particularly those aimed at recovering lost crypto.
In a separate case, another user under the alias kiki88888 is said to have listed data belonging to Binance users. This second batch reportedly includes over 132,000 records and contains login information from one of the world’s largest crypto platforms. Although the scale of these leaks is serious, it appears they may not have come from direct system hacks.
Cybersecurity experts suggest phishing campaigns—where users are tricked into sharing sensitive data—are the more likely cause. Hackers often pretend to be from trusted platforms or run fake ads to lure users into entering their credentials on fraudulent websites. These social engineering tactics continue to be highly effective, especially in the crypto world where many investors may be less cautious.
"Some of you really need to stop clicking random stuff," warned the Dark Web Informer, pointing to poor digital habits that leave users vulnerable.
Neither Binance nor Gemini has made an official statement about the alleged leaks, leaving users uncertain about the full scope and origin of the data exposure. Meanwhile, similar attacks have been affecting Coinbase users as well. In March alone, Coinbase users lost over $46 million through social engineering tactics, according to BeInCrypto.
Security firm Scam Sniffer revealed that over $15 million in losses were recorded from phishing scams in just the first two months of the year. These numbers show how widespread and costly these schemes have become in the crypto community.
As cybercriminals become more advanced, crypto users are being urged to take greater precautions. Basic steps such as enabling two-factor authentication (2FA), avoiding unfamiliar links, and using hardware wallets can make a major difference in protecting personal funds and information.
The rise in phishing attacks—and now large-scale data leaks—shows that crypto users are top targets for online fraud. Staying alert and securing accounts is more important than ever.
