What Happened
In January 2026, BTCONNECT, a UK-based service provider used by small businesses and professionals, experienced a data breach involving approximately 50,000 records in XLSX format. The leaked data originated from Know Your Customer (KYC) or customer onboarding processes dating from the 2020-2023 cryptocurrency boom period. The compromised information included sensitive personally identifiable information such as email addresses, full street addresses, city, county, and country details. Cybersecurity analysts warned that attackers could exploit this data for crypto recovery scams, hyper-local phishing attacks, CEO fraud targeting SMEs, and identity theft, given the verified nature of the KYC records and the victims’ likely involvement in cryptocurrency activities during that period.
