Gemini 2022 Data Breach
ObscureIQ Breach Intelligence
Low SeverityWebsite / service breach
Gemini Cryptocurrency Exchange Breach (2022): 5.3 Million Customer Email & Phone Records Exposed via Third-Party Vendor
Cryptocurrency exchange and financial platform.
Verified by ObscureIQ Intelligence
22/100Breach Risk Index
3Data Value
40Market Recency
241dSince Breach
Breach Intelligence Summary
Entity: Gemini · Actor: Unknown · Sources: 4 references
Attack: Social Engineering
Profile: Financial institution · Cryptocurrency exchange and custody · Digital asset trading platform · USA / Global
Timeline: Breach (2022-12-13) · Indexed (Aug 29, 2025) · Year (2022)
Exposure: 5.3M records · 2 fields: Email Address, Phone Number
Status: Confirmed
Executive Summary
Gemini, a U.S.-based cryptocurrency exchange, had the contact information of approximately 5.3 million customers exposed after a dataset surfaced on cybercrime forums in December 2022. The breach did not originate from Gemini's own systems. Instead, attackers used social engineering to compromise employees at Twilio's Authy service, a two-factor authentication provider used by Gemini, and extracted customer data through that supply chain connection. The exposed data consisted of email addresses and partial phone numbers. No passwords, wallet credentials, or financial data were included. Even so, the exposure posed a serious risk to affected users. Cryptocurrency holders are high-value targets, and the leaked contact details were quickly weaponized in phishing and smishing campaigns. Attackers impersonated Gemini support across email, SMS, WhatsApp, and Telegram to steal login credentials or trick users into transferring funds. The data also raised concerns about SIM-swapping attacks, in which criminals hijack a victim's phone number to bypass account security. Gemini confirmed the breach and notified affected customers. No prominent regulatory action or settlement specific to this incident has been documented. Affected individuals remain at elevated risk of targeted phishing, account takeover, and financial fraud, and should treat any unsolicited outreach claiming to be from Gemini with suspicion.
ObscureIQ assessment: Severe risk. Exposure enables asset-targeted phishing, account takeover, financial fraud, extortion, and physical-world targeting of likely high-value crypto holders.
Breach Impact
In December 2022 a dataset of approximately 5.3 million Gemini customer email addresses and partial phone numbers surfaced on cybercrime forums. Gemini confirmed the exposure but attributed it to a breach at a third-party vendor — later identified as Genesis Digital — rather than a compromise of Gemini's own systems. The affected data was limited to contact information. No wallet credentials, trading activity, or financial data was exposed. Gemini notified affected customers and reported the incident. No settlement or regulatory action specific to this vendor breach has been prominently documented beyond the company's general regulatory environment.
About Gemini
Gemini is a U.S.-based cryptocurrency exchange and financial platform founded in 2014 by Cameron and Tyler Winklevoss. The platform offers buying, selling, and custody of cryptocurrencies alongside a credit card product and institutional trading services. Gemini is regulated as a New York trust company and has positioned itself as a compliance-focused exchange relative to less regulated competitors.
Why They Hold Your Data
Crypto exchanges and custodians collect highly sensitive identity verification records, contact data, financial information, transaction history, device and login metadata, and custody-related account records.
Recent Developments
Gemini has continued building out its regulated exchange and custody operations. The company navigated the broader crypto market downturn of 2022-2023 and the collapse of several competitor platforms. It launched a credit card product and has maintained its focus on institutional and retail custody. Gemini reached a settlement with the New York Attorney General in 2025 related to allegations that its Earn program had defrauded users.
Data Points Exposed
2 verified field types
Email Address
Phone Number
Field names are shown in full for clarity and search visibility. Canonical machine keys are emitted only in this page’s structured data.
Exploitation & Downstream Threats
Threat Activity:High
Primary downstream threats:
- SIM swap attacks where phone numbers are present
- Targeted phishing campaigns using exposed email addresses
Threat vectors:
- Phishing, credential stuffing & account takeover
- SIM swapping, vishing & SMS phishing
Recommended Actions
If you believe your information may be included:
Enable MFA Everywhere
Turn on multi-factor authentication on email first, then financial accounts.
Report & Recover
If you spot misuse, start an official recovery plan and report fraud.
Frequently Asked Questions
What happened in the Gemini breach?▾
Gemini, a U.S.-based cryptocurrency exchange, had the contact information of approximately 5.3 million customers exposed after a dataset surfaced on cybercrime forums in December 2022. The breach did not originate from Gemini's own systems. Instead, attackers used social engineering to compromise…
What data was exposed?▾
Verified fields include Email Address, Phone Number.
What should I do if I was affected?▾
Change reused passwords, enable MFA, and (if identity or financial data is involved) freeze your credit and monitor your accounts.
Sources & References
Every claim on this page is traceable. This breach draws on:
Breach Index
Breach Index
Cross-source
Dehashed
ObscureIQ Intelligence
ObscureIQ proprietary analysis
Protect Yourself
Check If You're Affected
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Get Free Breach Alerts
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
High-Risk? Get an Exposure Audit
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation