I got similar emails in the last few days and the ip address traced back to russia.This clearly looks like a breach has happened because many user reported the same incident with their accounts.
I also came across a tweet from cryptopia that reads:
There are a small number of users who have reported failed login attempts to their accounts. We can confirm that Cryptopia hasn't been compromised. Please see this FAQ if you are affected
source-twitter.
But to be on the safer side one must activate 2fa settings.The matter is unclear until and unless there is a detailed explanation for such activities by the cryptopia team.The best thing to do at the moment is to withdraw any funds out there and keep them safe somewhere else.
