The investing service Robinhood (HOOD) reported Monday that it had endured a data security breach earlier this month which revealed the information of millions of its users.

“At this time, we understand that the unauthorized party obtained a list of email addresses for approximately five million people and full names for a different group of approximately two million people," the financial services company said in a blog post of the Nov. 3 breach.

For most of the customers affected, only email addresses and full names were acquired. Just over 300 customers had their name, date of birth, and ZIP codes obtained. Robinhood confirmed in a statement that 10 of those customers had “more extensive account details revealed.”

Robinhood said the hack is being considered "contained." It added that no Social Security numbers, bank account numbers, or debit card numbers were stolen, writing that "there has been no financial loss to any customers as a result of the incident."

Robinhood further stated that “the unauthorized party demanded an extortion payment.” Robinhood said it has informed law enforcement of the hack and an investigation is underway.

Following the report, Robinhood shares fell 3.1%, NBC News stated. At press time, shares were trading at $36.94, down $1.04, or 2.74%.

RELATED STORIES