CoinMarketCap, a toll-tracking website for cryptocurrencies, has reportedly fallen victim to a hack that leaked iii.1 million (3,117,548) user email addresses.

The information came into light afterward the hacked e-mail addresses were constitute to be traded and sold online on various hacking forums, and revealed past Accept I Been Pwned, a website dedicated to tracking hacks and compromised online accounts.

CoinMarketCap, a subsidiary of cryptocurrency exchange Binance, confirmed that the list of leaked user accounts matched its user base:

"CoinMarketCap has become aware that batches of data have shown upwardly online purporting to be a list of user accounts. While the data lists we have seen are just email addresses, we take found a correlation with our subscriber base."

While confirming the correlation of the 3.1 1000000 (3,117,548) user e-mail addresses with its user base on Oct. 12, the company has bodacious that the hackers did not gain admission to any of the business relationship passwords. "Nosotros have not found any evidence of a data leak from our own servers — nosotros are actively investigating this issue and will update our subscribers equally soon as nosotros accept any new data," a CoinMarketCap spokesperson said.

Despite the confirmation, CoinMarketCap has yet to identify the exact cause of the hack. Responding to Cointelegraph's request for annotate, CoinMarketCap said:

"As no passwords are included in the data we have seen, we believe that it is nearly likely sourced from another platform where users may have reused passwords across multiple sites."

Related: Hackers exploit MFA flaw to steal from 6,000 Coinbase customers — Report

A recent hack on the Coinbase crypto exchange resulted in the compromise of six,000 user accounts.

The attack was a outcome of exploiting the exchange'due south multifactor authentication (MFA) organisation, which suggests that the hackers had access to users' email addresses. According to Coinbase, the attackers identified a vulnerability in the account recovery process:

"In this incident, for customers who use SMS texts for two-factor authentication, the third political party took advantage of a flaw in Coinbase'south SMS Account Recovery process in order to receive an SMS 2-factor authentication token and gain access to your account."

While the value of stolen assets has however to be revealed by Coinbase, the incident was complemented past thousands of formal complaints from account holders confronting the visitor.