Crypto lending service Celsius has suffered a data breach originating with an email vendor, resulting in customers being hit with scam emails. 

Bad actors hacked a third-party distribution system, CoinDesk reports, quoting an email sent by Celsius to its customers.  

According to CoinDesk, the email states: “An unauthorized party managed to gain access to a back-up third-party email distribution system which had connections to a partial customer email list.”

The email continues: “Once inside the system, this unauthorized party sent a fraudulent email announcement, of which we know some of the recipients to be Celsius customers.” 

The third-party distribution system was not identified.