Impact & Downstream Threats
This breach carries high risk due to the nature of exposed data fields and the scale of affected records.
- SIM swap attacks where phone numbers are present
- Targeted phishing campaigns using exposed email addresses
Breach Intelligence
Executive Summary
In December 2022, cryptocurrency exchange Gemini confirmed that the personal information of approximately 5.3 million customers had been exposed after a dataset surfaced on cybercrime forums. At first, the leak was widely interpreted as a direct breach of Gemini’s systems. However, investigations quickly revealed that the source was a third-party compromise at Twilio’s Authy service, the two-factor authentication provider used by Gemini. ,
,
, The exposed information included email addresses and partial phone numbers, tied to customer accounts. While no passwords or financial data were included in the leak, the data was still significant enough to fuel highly targeted phishing and smishing campaigns against Gemini’s user base. ,
Hackers had obtained the information following a sophisticated social-engineering attack against Twilio employees, which gave intruders access to Authy’s systems. From there, threat actors were able to pull phone numbers linked to millions of Authy accounts. This supply-chain weakness made Gemini and other Authy-integrated services indirect victims of the breach. ,
About Gemini
Cryptocurrency exchange and financial platform.
Data Points Exposed
Dark Web Verification
Status: Confirmed
- Dataset containing approximately 5.3M records identified in breach intelligence sources.
- The data is indexed and searchable across breach notification platforms.
Recommended Actions
⚠️ Do not assume this is low sensitivity.
Non-clients may request a breach impact review.
Frequently Asked Questions
In December 2022, Gemini experienced a data breach that exposed approximately 5.3M records containing personal information.
The exposed data includes fields such as email address, phone number, phone number:partial.
Approximately 5.3M records were affected based on current breach intelligence.
Protect Yourself
Check If You’re Affected
Enter your email to check if your data appears in this breach.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed.
High-Risk? Get an Exposure Audit
Full-spectrum exposure audits for executives and public figures.
ObscureIQ Advisory
We combine proprietary dark web access with commercial and restricted breach intelligence to verify exposure and assess real-world risk.
- A public-facing individual
- A high-profile executive
- A customer of Gemini
- Or concerned about credential reuse
Powered by the ObscureIQ Breach Intelligence Database
© 2026 ObscureIQ · All Rights Reserved · Data Licensing
Latest from ObscureIQ
What Is Credit Monitoring? And Do I Want It? (Answer: Not Really)
Lock Down Browsers. Wipe Employee Footprints. Win Breach Wars.
Sextortion Spam