Back to Blog
LegalTech & IA

Kroll Breach: When Your Bankruptcy Trustee Becomes a Phisher's Best Friend

NakedPact Editorial Committee
Reviewer: Carmelo G.
Comitato Editoriale NakedPact
July 12, 2026
10 min read
Kroll Breach: When Your Bankruptcy Trustee Becomes a Phisher's Best Friend

The Irony Is Painful

Imagine you've already lost your shirt in a crypto bankruptcy. Now, the very company hired to give you your money back hands your personal data to scammers on a silver platter. That's exactly what happened with Kroll, the restructuring firm managing claims for FTX and BlockFi creditors.

In August 2023, Kroll disclosed a data breach affecting users of its claims portal. The attackers got names, addresses, email addresses, and claim details—basically a ready-made phishing list. And they're using it.

Kroll, a third-party administrator for FTX and BlockFi bankruptcy cases, suffered a data breach in August 2023. Attackers accessed personal information of creditors, including names, addresses, and claim amounts. This data is now being used for targeted phishing attacks against desperate victims.

Why This Breach Is a Perfect Storm

First, the victims are already vulnerable. They've lost money and are anxious about recovery. Second, the data is highly specific—scammers know exactly how much each person is owed. Third, Kroll's role as a trusted intermediary means victims are more likely to click a link that looks like it's from them.

It's like getting your wallet stolen, then having the police officer who's supposed to help you sell your address to the thief. Reading the terms and conditions of bankruptcy filings is about as fun as cleaning grout with a toothbrush, but this breach makes it personal.

How the Scams Work

Victims report receiving emails that appear to be from Kroll or the bankruptcy court, asking them to verify their identity or click a link to receive their payout. The links lead to fake portals that steal login credentials or install malware.

Some scammers even call victims, using the leaked data to sound legitimate. They know your claim number, your address, and how much you're owed. It's social engineering at its finest—and most cruel.

What You Can Do Right Now

  • Don't click links in unsolicited emails. Always type the official URL directly into your browser.
  • Enable two-factor authentication on your claims portal account if available.
  • Verify any communication by contacting Kroll or the bankruptcy court through official channels.
  • Monitor your credit for signs of identity theft.

For more on data breach notification laws, see the GDPR (though Kroll's breach may fall under US state laws).

FAQ

Is my data safe if I filed a claim with Kroll?

Unfortunately, if you filed a claim in the FTX or BlockFi bankruptcy, your personal data was likely exposed in the Kroll breach. Take immediate steps to protect yourself from phishing.

What should I do if I receive a suspicious email about my bankruptcy claim?

Do not click any links. Forward the email to the official bankruptcy claims administrator and then delete it. Contact Kroll directly using the phone number on their official website.

Can I sue Kroll for the data breach?

Possibly. Class action lawsuits are already being considered. Consult with a privacy attorney to understand your rights under applicable data protection laws.

🛡️ Your Post-Breach Action Checklist

  • Change your claims portal password
  • Enable two-factor authentication
  • Freeze your credit with all three bureaus
  • Set up fraud alerts
  • Monitor bank and credit card statements
  • Report phishing attempts to FTC
NakedPact Logo

NakedPact Editorial Committee

Article created by the NakedPact editorial team. Our mission is to analyze, simplify, and expose unfair terms and hidden risks in everyday contracts to protect citizens and consumers.

Do you own a website?

Do you own a website?

Want to communicate your data processing transparency to your users? Dynamically use our badge and showcase your platform's compliance.

🛡️ Protect your rights with one click

Don't risk signing abusive clauses. Install the free NakedPact extension for Chrome or Firefox and instantly analyze any contract on the web.

Don't trust, verify.

Now that you know the risks, don't sign blindly. Upload your contract to NakedPact and let AI find the hidden clauses for you. It's 100% free.

Analyze Your Contract Now

Rispettiamo la tua privacy

Usiamo i cookie per migliorare la tua esperienza e personalizzare gli annunci. Scopri di più.

NakedPact Logo

Estensione Chrome

Analizza i contratti e i Termini di Servizio direttamente sul tuo browser con l'estensione NakedPact.