Know-Your-Customer (KYC) data, including personal photos to verify identities, of thousands of Binance users may have been sent out into the wild. The release came after a reported hack of the cryptocurrency exchange\u2019s servers and a subsequent ransom attempt that Binance didn\u2019t pay. While the hack has not been confirmed, it\u2019s plausible, given the fact that the exchange was hacked a few months ago. A Twitter user posted Tuesday about the breach, stating, \u201cBREAKING; Thousands of #Binance users KYC data has been hacked and all ID's are posted in a telegram group chat.... @cz_binance needs to make binance more secure because this, along with the 7000 BTC \u201chack\u201d a few months back, aren\u2019t making binance look trustworthy!\u201d The Telegram group mentioned provides examples through pictures of individuals holding various types of identification \u2013 passports, driver\u2019s license and more \u2013 in order to verify their identity with the exchange. The pictures also show the individuals holding a \u201cBinance\u201d sign and several have a date of February 24, 2018. Binance accuses the Telegram channel and Twitter thread of offering nothing more than FUD (fear, uncertainty and doubt) and that no data breach had taken place. In a blog post, it states, \u201cAt the present time, no evidence has been supplied that indicates any KYC images have been obtained from Binance, as these images do not contain the digital watermark imprinted by our system.\u201d However, a couple of issues exist that might lend credibility to the story that the pictures are real. Binance has acknowledged that someone tried to force the exchange to pay 300 BTC ($3.5 million at today\u2019s price) in return for not releasing 10,000 photos. The exchange refused and it is after this that the pictures began to appear. To make the story more intriguing, Binance acknowledges that it didn\u2019t have control over the KYC data when the pictures were allegedly taken. It states, \u201cOn initial review of the images made public, they all appear to be dated from February of 2018, at which time Binance had contracted a third-party vendor for KYC verification in order to handle the high volume of requests at that time. Currently, we are investigating with the third-party vendor for more information.\u201d That means that Binance cannot refute the legitimacy of the data with 100% accuracy. The issue with the lack of watermark can easily be attributed to the copies of the KYC pictures being taken before the identifying feature had been applied. The pictures would have to be uploaded to the site and stored before the watermark is embedded into the file. Add to this list the fact that Binance has already been called out for lax KYC security as recently as last month, and serious doubts have to be raised. The exchange has reportedly been so remiss in its duties that it has knowingly allowed hackers to use the platform to launder money.