I am reasonably certain that cryptsy has been hacked by the people behind cryptsy-refund. They have gained access to at least some or all customer email and phone numbers. They may have gained access to more personal information than just that including SSN's and DL #s if that was available unencrypted.
This is a shitstorm.....
I know they got at least email addresses since I just recently changed mine to a domain I recently registered. They also text messaged the phone number I have listed there. Fortunately I never gave them my SSN or DL#.
This breach of may cause crytsy to incur big fines from the federal government if SSNs have been taken?
Supposedly the service they use to send email and text messages may have been breached...at least that is the latest I have heard...take it with a grain of salt.
From the text of the email, I think someone just wanted to broadcast the idea that coins were stolen from cold storage. Hence, the use of capitalization on cold. Also the grammar is strange suggesting that they may not be a native English speaker.
Regarding the list of emails/phone numbers, this could only have come from two possible places:
1. a hack of cryptsy or a partner
2. employee theft
Interestingly, if we think it's likely that the primary motivation for the mailing was to spread FUD and we look at why a Cryptsy employee may have been motivated to send out such a mailing, making it look like a phishing attack may simply been the best choice to allay suspicions away from it having been an employee.