- Waitio was a target of the hacking group Shiny Hunters, and the resulting data breach may have leaked the data of nearly 50,000 crypto users.
- Some of the stolen data included email addresses and transaction histories, which means that the victims are at risk of phishing and identity theft.
- On the bright side, since Waltio uses “read-only” API keys, user funds on connected exchanges are safe.
This week, reports surfaced that Waitio, the popular crypto tax platform, suffered a major data breach.
This event quickly turned into an extortion attempt as a notorious hacker group claims to have stolen sensitive financial information from a massive database.
This incident shows a growing danger to investors who use third-party tools to manage their crypto taxes.
The Waltio Data Breach
As mentioned, Waitio was attacked by a hacking group known as the Shiny Hunters. According to reports, this organisation has a long history of attacking victims like tech giants and retail companies.
In the case of the Waltio data breach, the hackers allegedly gained access to a database containing the records of almost 50,000 users. Even worse, some of the stolen data includes email addresses, account balances and detailed transaction histories.
These also turn out to be the exact pieces of information needed to track a person’s assets on the blockchain.
The hackers are actively demanding a ransom and have threatened to leak the information publicly or sell it on the dark web if the company does not pay.
Why Tax Platforms Are Main Targets
Waltio acts as a “crypto assistant” for over 60,000 users in France and beyond, because it helps people calculate capital gains and generate forms for the tax authorities.
Customers use the tool by connecting their exchange APIs or uploading their wallet addresses. The tool then collects this and stores it all on a database.
And even though Waitio does not have the power to move funds on behalf of its users, the information itself is worth a fortune.
When criminals know exactly how much Bitcoin or Ethereum a user has, as well as a roadmap to all of their addresses, they can run highly targeted spear phishing attacks.
They might send an email that looks exactly like a tax notice, and is tailored to the user’s specific holdings. This type of leak could even lead to physical threats against wealthy individuals, as has been happening in Europe for the past year.
🚨 Armed teenagers carried out a violent “wrench attack” on high-profile Twitch and OnlyFans creator Kaitlyn ‘Amouranth’ Siragusa earlier this year, breaking into her home, pistol-whipping her, and demanding access to her Bitcoin after being misled by her online posts about… pic.twitter.com/vc8FNjUwcH
— Subjective Views (@subjectiveviews) December 9, 2025
Differences Between Data and Asset Security
Users need to understand the difference between their data and their actual funds. Based on how the platform operates, your crypto is likely safe from direct theft.
Waltio uses “read-only” API keys, which means the software can view a user’s trades but cannot execute “send” or “withdraw” commands. In other words, a hacker inside the Waltio system cannot drain anyone’s Binance or Coinbase account.
However, their identity is what is at risk here. The hack now has the emails, tax residency and total wealth of thousands of users.
Even users who use a hardware wallet and have synced it with the tax software now have their information exposed.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Russia bans Telegram from "sending files and videos"! Calls for eliminating anonymity, TON ecosystem faces a test
Russia's communications regulator Roskomnadzor has implemented speed restrictions on Telegram since February 10, and has received over 13,000 user complaints about service disruptions. Although a complete ban is not currently planned, if Telegram fails to comply with legal requirements, it could impact its user experience in Russia and subsequently affect the TON blockchain ecosystem closely linked to it.
動區BlockTempo3h ago
SBF Denies FTX Bankruptcy in Prison, Reveals Truth, and $8 Billion Funding Gap Sparks New Crypto Controversy
On February 10th, Sam Bankman-Fried, who has been sentenced to 25 years in prison on multiple charges of fraud and conspiracy, spoke out again through his verified X account, claiming "FTX has never gone bankrupt," and accused the company's lawyers of submitting a "false bankruptcy petition." This statement starkly contrasts with the U.S. court rulings, regulatory documents, and financial audit results, and has quickly attracted attention within the crypto community.
According to judicial records, SBF was involved in embezzling over $8 billion of customer assets, leading the platform to become insolvent by the end of 2022. The massive losses of his affiliated trading firm Alameda Research were the direct cause of the collapse. Although subsequent asset recoveries and market rebounds have improved creditor expectations in some cases, prosecutors and judges both emphasized that this does not change the established facts of fraud.
GateNewsBot5h ago
South Korea Turns to AI to Detect Crypto Manipulation in 2026
_South Korea deploys AI to detect crypto manipulation in real-time, analyzing trades by the second._
_FSS targets whale schemes, pump-and-dumps, and social media fraud with automated detection tools._
_New Digital Asset Basic Act brings licensing rules for exchanges, operators, and
LiveBTCNews02-09 12:16
Facing Aave liquidation risk! World Liberty Financial is urgently selling off Bitcoin to rescue the situation and prevent further losses.
Amidst the intense volatility in the cryptocurrency market, DeFi protocol World Liberty Financial (WLFI), supported by the family of U.S. President Donald Trump, has unexpectedly come under pressure due to liquidation risks faced by lending platforms. The protocol was forced to sell Bitcoin to repay debts, drawing significant market attention.
According to on-chain data platform Arkham Intelligence, the official wallet of World Liberty Financial sold over 170 Bitcoins on Wednesday at an approximate price of $67,000 each, cashing out about $11 million. The funds were immediately transferred to leading lending protocol Aave to repay loans and avoid liquidation.
Alongside the forced sale of assets to cover debts, WLFI tokens have also continued to experience downward pressure.
区块客02-09 09:44
Bithumb mistakenly sent 40 billion USD worth of Bitcoin! The accounts were frozen for 35 minutes, during which 99% of the funds were recovered.
Bithumb mistakenly sent 620,000 BTC (worth $40 billion) to 695 users on February 6 (intended to send 2,000 KRW). The team discovered the error within 20 minutes and froze the accounts within 35 minutes. This incident triggered a flash crash in Bitcoin to $55,000. The team ultimately recovered 99.7% of the funds. Online users received 20,000 KRW and 7 days of zero trading fees.
MarketWhisper02-09 01:43
Facing Aave liquidation risk! World Liberty Financial is urgently selling off Bitcoin to rescue the situation and prevent further losses.
Amidst the intense volatility in the cryptocurrency market, DeFi protocol World Liberty Financial (WLFI), supported by the family of U.S. President Donald Trump, has unexpectedly come under pressure due to liquidation risks faced by lending platforms. The protocol was forced to sell Bitcoin to repay debts, drawing significant market attention.
According to on-chain data platform Arkham Intelligence, the official wallet of World Liberty Financial sold over 170 Bitcoins on Wednesday at an approximate price of $67,000 each, cashing out about $11 million. The funds were immediately transferred to leading lending protocol Aave to repay loans and avoid liquidation.
Alongside the forced sale of assets to cover debts, WLFI tokens have also continued to experience downward pressure.
区块客02-08 09:39
