TL;DR:
- Incident and origin: On April 15, former partners of a third-party service provider leaked emails and 2FA phone numbers of ION users.
- Fund security: The development team confirmed that private keys, wallets, and funds remain intact and out of danger following the attack.
- Legal actions: The firm has filed reports with the UK Information Commissioner’s Office and plans a technical migration for April 21.
At the beginning of the week, the blockchain project Ice Open Network, responsible for the $ION token and the Online+ social network on the BNB Chain, reported a significant security breach. This incident allowed unauthorized access to critical identity data, compromising the privacy of its global user base.
šØ We want to address a security incident that has recently come to our attention and provide full clarity to the community.
On April 15, one individual gained unauthorized access to an identity database server and illegally exported data. We have since received credibleā¦
— Ice Open Network (@ice_blockchain) April 20, 2026
The leak is serious; however, technical security indicators suggest that the core architecture was not breached. Transaction volume remains stable while the technical team rules out access to private keys or sensitive financial details.
The official statement from Ice Open Network clarifies that the attack was perpetrated by four former partners of a third-party service provider hired for operational tasks. These individuals reportedly extracted identity key names and contact data from a database hosted on an external server.
The company urged its community to immediately update their two-factor authentication (2FA) settings. Additionally, a migration on the Online+ platform has been scheduled to reinforce defense protocols following this personal information exposure.
The Impact of Insider Attacks in the Crypto Sector
The situation at Ice Open Network adds to a worrying trend of security incidents in the ecosystem during the first half of April 2026. Data reveals that crypto protocols lost more than $606 million in just 18 days, surpassing 2025 records.
The increase in malicious activity highlights the vulnerability of companies to third parties involved in data management. Nevertheless, ION has been transparent in identifying that those responsible were not direct employees of Ice Labs, thus facilitating the legal tracking of the attackers.
Community response has been mixed, with some users demanding more rigor in the selection of business partners. Meanwhile, other project supporters praise the speed with which criminal proceedings have been initiated before British authorities.
As the sector moves toward mass adoption in Web3, the protection of metadata becomes as crucial as that of assets. Ice Open Network ensures that its core functions of scalable DApps and tokenized communities will continue to operate without interruption after the migration.
Although funds are secure, the leak at Ice Open Network highlights the need to secure third-party access. The success of the April 21 migration will be decisive in fully restoring technical trust in its blockchain ecosystem.
