Loanbase
| Primary URL | Location | Industry | loanbase[.]com |
Country
United States of America
|
Financial Services
|
|---|
Profile
Loanbase operates as a Bitcoin crowd‑lending platform that connects individuals seeking to lend or borrow cryptocurrency through its online service. Headquartered in the United States of America, the company’s primary product is a website that facilitates loan agreements denominated in Bitcoin. Users create accounts on the platform and can enable two‑factor authentication for added security. The service includes functionality for processing withdrawal requests once loans are repaid or funds are otherwise available.
On February 6, 2016, Loanbase experienced a security breach when attackers exploited a vulnerability in the WordPress blog that powered part of its website, gaining access to the underlying SQL database. The compromised database contained personal information such as email addresses, phone numbers, and names of users. Four accounts that had not enabled two‑factor authentication were confirmed as compromised, leading to the theft of approximately eight Bitcoin. Before the platform halted withdrawals, the maximum potential loss was estimated at twenty Bitcoin. In response, Loanbase took its services offline, reset all user passwords, and publicly pledged to reimburse the stolen funds. The company also stated that it would implement additional security measures to detect future breaches earlier and canceled any unprocessed withdrawals, requiring users to resubmit them once the site returned.
The incident was reported by security news outlets, highlighting the risks associated with integrating third‑party components like WordPress into financial platforms. Following the breach, Loanbase indicated that it had strengthened its security posture to better protect user data and assets.
