The personal information of millions of Robinhood customers was stolen in a security breach that involved an extortion attempt, the company said Monday.
Robinhood said the Nov. 3 data breach gave the culprit access to email addresses of about 5 million people, and the full names of another roughly 2 million customers. The names, date of birth and ZIP codes of about 300 people were also stolen. About 10 Robinhood customers had "more extensive account details revealed," the company said.
"We believe that no Social Security numbers, bank account numbers, or debit card numbers were exposed and that there has been no financial loss to any customers as a result of the incident," Robinhood said in a blog post.
The culprits later demanded "an extortion payment" after the breach was discovered. Robinhood said it has informed law enforcement agencies and is "continuing to investigate the incident."
Shares of Robinhood slipped about 3% in after-hours trading.