Stretto phishing attack affects Celsius creditors and three other bankrupt companies

Legal services provider Stretto suffered a hacker attack that resulted in the theft of Celsius Network's customer information, which was wider than previously known, affecting at least four companies in total. A Stretto lawyer said at a hearing in New York on Tuesday that the attack affected creditors of bankrupt cryptocurrency lender Celsius and three other companies for which Stretto provided bankruptcy-related administrative services. The company said it learned on April 17 that it had been targeted by a phishing attack. (Bloomberg) Previously in April, Celsius said on the X platform that it had notified the court of a data security incident reported by Celsius' claims agent Stretto. According to court documents it shared, on April 17, 2024, Stretto discovered that certain Celsius creditor data held by Stretto was accessed by unauthorized users after a phishing attack. Stretto terminated all unauthorized access to affected accounts on the same day. Stretto has hired an independent computer forensics company to conduct an investigation to determine the severity of the data security incident. The investigation is ongoing, but as of now, Stretto has determined that the information accessed included creditor names, email addresses, mailing addresses, and claim amounts. In addition, less than 40 creditors who had provided Stretto with their tax identification numbers also had their information accessed. Based on the current investigation, the data security incident does not appear to have impacted Stretto’s systems related to distributions under the Plan, or data provided to Stretto by Celsius during the bankruptcy proceeding. Stretto’s independent investigation is ongoing and further updates will be provided as circumstances warrant.