What Happened
In August 2022, BitBox (also known as Shift Crypto), a Swiss provider of hardware cryptocurrency wallets, suffered a data breach via compromise of its email marketing tool, resulting in the theft of several hundred thousand customer records including names, email addresses, aliases, and IP addresses, but no other highly sensitive personal or financial data such as private keys. This incident created a potential “hit list” for phishing attacks targeting over 20,000 customer orders, though no widespread phishing campaigns were reported at the time. Note that a separate, unrelated ransomware attack by the Everest group on BitBox occurred in July 2025, stealing over 400 GB of internal documents and customer data, but it does not match the queried 2022 timeframe.
