Nansen refused to name the third-party it says suffered a security breach resulting in exposed emails, password hashes, and blockchain data.