The investment application Robinhood reported on Monday that a computer attack managed to break through the company’s security barriers to gain data from its users.
a cybercriminal called the company’s customer service and, posing as an authorized person, misled an employee of Robinhood to give him access to the computer system, a technique known as “social engineering,” according to the company reported in a blog.
After stealing information from Robinhood, the attacker tried to extort money from the company, which chose to alert police and warn users, according to the publication.
“We owe it to our clients to be transparent and act with integrity,” said the security chief of Robinhood, Caleb Sima, in the post.
“After a diligent review, put the entire community of Robinhood on notice of this incident is now the correct thing to do. “
The attack took place on November 3, and the hacker snatched some five million email addresses from users of Robinhood, along with the names of some two million other users of the investment app, according to the company.
“The attack has been contained and we believe that no Social Security numbers, bank account numbers or debit card numbers were exposed and that there has been no financial loss for any customers as a result of the incident,” he said Robinhood.