Cash App’s data leak affected more than 8 million clients


On Monday, Block, Inc., a financial services and digital payment provider, said that a former Cash App employee had accessed user details without authorization.

image credits: iMore

On December 10th, 2021, a former employee gained access to and took customer reports from the company’s database, resulting in a compromise.

Block, Cash App’s parent firm, formally acknowledged the breach in a filing with the US Securities and Exchange Commission on April 4.


8.2 million current and past users are being contacted to inform them of this security vulnerability, according to a statement from the firm to TechCrunch.

The reports contained the full names and account numbers of the clients. Several consumers had their brokerage portfolios, holdings, and stock-trading behaviour publicly displayed for a single day.

According to Block, no further information identifying the users of the system was obtained. Information such as usernames, passwords, SSNs, home addresses, and credit card information was highly unlikely to be compromised.


Additionally, the business noted that other Cash App-related goods and functionalities were unaffected outside of the United States.

When the breach was discovered, Block reveals, the corporation promptly initiated an inquiry into the matter. In addition, the company is seeking the help of appropriate regulatory authorities and law enforcement.

In the past, Block went by the name Square Reader, and it is still recognised as such now. Tidal, a music streaming service, Spiral (the company’s cryptocurrency branch), and Cash App are just some of the company’s other businesses.


Leave a Comment