Nansen alerts users to security breach involving vendor

Some Nansen users had their email addresses, password hashes and blockchain addresses exposed in a recent third-party security breach

by Shalini Nagarajan /
article-image

Nansen’s Alex Svanevik | Source: Ian Walton for Blockworks

share

Blockchain data analytics platform Nansen recently suffered a security incident that exposed some users’ email addresses and passwords.

The breach appears to have originated from a third-party vendor whose system was compromised, allowing an attacker to obtain admin rights to an account used for granting customer access to Nansen.

Nansen CEO Alex Svanevik stated that the company became aware of the attack on Sept. 20. Initial investigations indicate that about 6.8% of its users are affected by the breach.

“These users had their email addresses exposed, a smaller portion also had password hashes exposed, and a last, smallest group also had their blockchain address exposed,” Svanevik said in an X post on Friday.

“We have informed our users via email if and how they’ve been affected,” he added.

Loading Tweet..

A Nansen spokesperson declined to disclose the name of the vendor, but said it has asked them to communicate on the incident publicly in case others are affected.

Nansen contacted affected users via emails sent from its official support@nansen.ai email address on Sept. 21 between 5 pm and 9 pm UTC, instructing them to reset their passwords.

The team also informed users that while their passwords are not stored in plaintext, malicious attackers could still attempt to gain access to accounts using the compromised password and email address.

Data breaches have become increasingly frequent in the industry of late.

NFT platform OpenSea told users about a data breach in June last year when staff discovered that email addresses had been shared with an external party.

Last month, ConsenSys disclosed that about 7,000 MetaMask users had their private information, including email addresses, compromised between Aug. 2021 and Feb. 2023.

Also in August, embattled crypto companies BlockFi and FTX also reported being indirectly impacted by a cybersecurity breach related to third-party claims administration platform Kroll.

Get the news in your inbox. Explore Blockworks newsletters:

Tags

Upcoming Events

Digital Asset Summit 2025

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

buy ticketslearn more

recent research

Research

by Research Team

news

article-image

The Breakdown

Thursday links: Blockchain stocks, barroom compliance and NFT treasuries

For just $54, you, too, could send a memecoin 500% higher

by Byron Gilliam /
article-image

Lightspeed NewsletterWeb3

5 biggest Solana moments of 2025 (so far)

Memecoins, tech, and inflation have dominated the first half of the year

by Jack Kubinec /
article-image

Forward Guidance NewsletterPolicy

How inflation breakevens signal eroding Fed independence

As the Trump administration continues to test Fed independence, markets are beginning to react

by Felix Jauvin /
article-image

0xResearch NewsletterDeFi

Ethereum stakers face 9-day wait as stETH loops fall into the red

An Aave interest rate shock prompted over 475,000 validators to exit and pushed stETH into a prolonged depeg

by Macauley Peterson /
article-image

DeFiPolicy

Hacker, IRS agent take Storm trial stand as government winds down case

While Roman Storm’s team is set to present its case, it’s not yet clear if the Tornado Cash founder will testify

by Ben Strack /
article-image

The Breakdown

How Helium demonstrates crypto’s utility

A wireless network inspired by lost drones is now helping telco carriers reach your phone indoors

by Byron Gilliam /