CoinDCX, the Indian crypto exchange, on Friday said some of its user data was exposed due to a security breach at Mixpanel, a third-party service provider.
In an email to the users, the CoinDCX said the breach did not affect its infrastructure and that their funds were safe.
Advertisement
Notably, Mixpanel, which provides data analytics services to CoinDCX, suffered a security breach on November 8.
Advertisement
The US-based company told CoinDCX on November 25 that some of its data was accessed after the “security incident”.
“They (Mixpanel) confirmed that some of our CoinDCX users’ data was accessed.
The security incident didn’t target CoinDCX specifically and included the broader customer base of Mixpanel.
Mixpanel has no access to CoinDCX infrastructure or users’ funds,” CoinDCX told users in an email communication.
CoinDCX has initiated a full review of Mixpanel’s security posture, data minimisation, and its internal vendor risk processes.
The company has informed users that it has collaborated with its service provider to confirm the containment of the breach.
CoinDCX has further cautioned users to stay alert to unsolicited calls, messages, or phishing emails, including requests for OTP (one-time password), passwords, PINs, bank details, and links to social media groups impersonating official company communication.
TPRM report: https://www.rankiteo.com/company/coindcx
"id": "coi1764331837",
"linkid": "coindcx",
"type": "Breach",
"date": "11/2025",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'customers_affected': 'some users (exact '
'number '
'undisclosed)',
'industry': 'financial services (crypto)',
'location': 'India',
'name': 'CoinDCX',
'size': None,
'type': 'cryptocurrency exchange'},
{'customers_affected': 'broader customer '
'base (including '
'CoinDCX)',
'industry': 'data analytics',
'location': 'United States',
'name': 'Mixpanel',
'size': None,
'type': 'third-party service provider'}],
'attack_vector': 'third-party vendor compromise (Mixpanel)',
'customer_advisories': ['caution against unsolicited calls, '
'messages, or phishing emails; warnings '
'about OTP, password, PIN, and bank '
'detail requests'],
'data_breach': {'data_encryption': None,
'data_exfiltration': True,
'file_types_exposed': None,
'number_of_records_exposed': None,
'personally_identifiable_information': None,
'sensitivity_of_data': 'moderate (potential for '
'phishing/identity theft)',
'type_of_data_compromised': ['user data '
'(unspecified)']},
'date_detected': '2023-11-25',
'date_publicly_disclosed': '2023-11-25',
'description': 'CoinDCX, an Indian crypto exchange, reported '
'that some of its user data was exposed due to a '
'security breach at Mixpanel, a third-party data '
'analytics service provider. The breach occurred '
'on November 8, 2023, and was disclosed to '
'CoinDCX on November 25, 2023. The incident did '
'not target CoinDCX specifically but affected '
"Mixpanel's broader customer base. CoinDCX "
"confirmed that its infrastructure and users' "
'funds remained unaffected. Users were advised to '
'stay vigilant against phishing attempts and '
'unsolicited communications.',
'impact': {'brand_reputation_impact': 'potential (due to user '
'data exposure and '
'phishing risks)',
'conversion_rate_impact': None,
'customer_complaints': None,
'data_compromised': True,
'downtime': False,
'financial_loss': None,
'identity_theft_risk': 'potential (due to exposed '
'user data)',
'legal_liabilities': None,
'operational_impact': None,
'payment_information_risk': False,
'revenue_loss': None,
'systems_affected': False},
'investigation_status': 'ongoing (full review of Mixpanel’s '
'security initiated)',
'post_incident_analysis': {'corrective_actions': ['review of '
'Mixpanel’s '
'security '
'posture',
'data '
'minimization',
'vendor risk '
'process '
'improvements'],
'root_causes': None},
'recommendations': ['users advised to stay alert to phishing '
'attempts (OTP, passwords, PINs, bank '
'details, impersonation links)',
'review third-party vendor security postures',
'enhance data minimization practices'],
'references': [{'date_accessed': '2023-11-25',
'source': 'CoinDCX User Email Communication',
'url': None}],
'regulatory_compliance': {'fines_imposed': None,
'legal_actions': None,
'regulations_violated': None,
'regulatory_notifications': None},
'response': {'adaptive_behavioral_waf': None,
'communication_strategy': ['email notification to '
'users',
'public advisory on '
'phishing risks'],
'containment_measures': ['collaboration with '
'Mixpanel to confirm '
'breach containment'],
'enhanced_monitoring': None,
'incident_response_plan_activated': True,
'law_enforcement_notified': None,
'network_segmentation': None,
'on_demand_scrubbing_services': None,
'recovery_measures': None,
'remediation_measures': ['full review of Mixpanel’s '
'security posture',
'data minimization '
'assessment',
'internal vendor risk '
'process review'],
'third_party_assistance': True},
'stakeholder_advisories': ['users notified via email'],
'title': 'Data Exposure Incident at CoinDCX via Third-Party '
'Provider Mixpanel',
'type': ['data breach', 'third-party incident']}