Robinhood is a popular app for people looking to get into stocks and trading. With so many users, the app is a prime target for cyberattacks. Unfortunately, it is the recent victim of one. The question is, what was stolen, and could you have been affected?
According to Robinhood’s official blog, the Nov. 3 attack was made possible through the use of social engineering from an unauthorized third party, which gave the hacker access to a part of Robinhood’s customer support system. While Robinhood was able to secure its database, the hacker demanded payment as extortion.
Robinhood didn’t pay up, but that’s the only good news here. The breach exposed at least five million user accounts and two million users’ full names. 310 users had zip codes revealed, and 10 users, unfortunately, had “extensive account details revealed.” While those latter points affect a fraction of the overall total, you can imagine that those millions of affected users had other information stolen as well.
If you have a Robinhood account, make sure to change your password and set up two-factor authentication if you haven’t done so already.