Open Exchange Rates has announced a data breach that exposed the personal information and hashed passwords for customers of its API service. The service allows organizations to query real-time and historical exchange rates for over 200 world currencies. The data was most likely extracted from their systems. The breach is warning that the stolen data could be used in targeted spear-phishing campaigns and users should be suspicious of any email, phone calls, or texts asking to confirm their account information. Users should use this link to set a new password for all accounts created before March 2nd, 2020.
Source: https://www.bleepingcomputer.com/news/security/open-exchange-rates-data-breach-affects-users-of-well-known-orgs/