CoinInsight360.com logo CoinInsight360.com logo
America's Social Casino

Cryptopolitan 2025-05-15 13:48:25

Coinbase CEO confirms data breach: Users targeted by rogue support agents

Coinbase has shared a security incident about cybercriminals bribing its overseas customer support agents to access user data. According to the company’s official statement, the breach affected less than 1% of monthly transacting users and did not expose passwords, private keys, or provide access to customer funds. The attackers attempted to extort Coinbase for $20 million to prevent the release of the stolen information. Instead, CEO Brian Armstrong announced that the exchange would establish a $20 million reward fund for information leading to the arrest and conviction of those responsible. Attackers target and compromise customer support The security breach happened when cybercriminals targeted Coinbase’s worldwide customer support activities. They offered agents cash bribes to reproduce information from customer support aids. According to the firm’s report , the attackers accessed several types of customer data, including names, addresses, phone numbers, and email addresses. They also accessed masked Social Security numbers (last four digits), masked bank account numbers, some bank account identifiers, government ID photos such as driver’s licenses and passports, snapshots of account balances, and transaction histories. https://t.co/evpIBMFvRW pic.twitter.com/f6UPdkL5R0 — Brian Armstrong (@brian_armstrong) May 15, 2025 Apart from that, sanctioned corporate data was also utilized by the attackers. These include reports, training materials, and communications that were given to aid agents. However, Coinbase reiterated that the attack did not violate a number of fundamental information categories. Armstrong addressed the hackers, who attempted to blackmail Coinbase for a payment of $20 million in exchange for not releasing the stolen information in his video. “I’m going to respond publicly to these attackers by saying no, we are not going to pay your ransom.” Coinbase launches mitigation measures Coinbase issued a detailed report of the security incident. This encompasses short-term consumer protections and longer-term security enhancements. Coinbase pledged to “make customers whole” by reimbursing users that were deceived into sending funds to attackers in social engineering attacks via stolen credentials. Coinbase also announced it is opening a new support hub in the United States and implementing stronger security controls and monitoring across all locations. Armstrong specifically mentioned “relocating some of our customer support operations as a result of this” in his video statement. The company is also hardening defenses by increasing investment in insider-threat detection, automated response systems, and security simulations to identify potential vulnerabilities in internal systems. Coinbase confirmed that the compromised insiders “were fired on the spot and referred to U.S. and international law enforcement.” Coinbase issues guidelines to help users Coinbase has issued specific guidance to help customers protect themselves from potential social engineering attempts that may result from the data breach. The company warns users to be vigilant about imposters who may pose as Coinbase employees and attempt to pressure them into transferring funds. In its safety advisory, Coinbase emphasized several key points about their legitimate communication practices: “Coinbase will never ask for your password, 2FA codes, or for you to transfer assets to a specific or new address, account, vault or wallet. We will never call or text you to give you a new seed phrase or wallet address to move your funds to.” The company advises customers to hang up immediately if they receive such calls. The company has already sent impact notices to affected users and plans to keep the community updated as the investigation progresses. For those customers whose data was compromised, the primary risk comes from potential social engineering attacks where scammers leverage the stolen personal information to appear legitimate when contacting victims. In his video statement, CEO Brian Armstrong delivered a stern message to the attackers and others who might consider targeting the exchange in the future: “For these would-be extortionists or anyone seeking to harm Coinbase customers, know that we will prosecute you and bring you to justice.” KEY Difference Wire : the secret tool crypto projects use to get guaranteed media coverage

면책 조항 읽기 : 본 웹 사이트, 하이퍼 링크 사이트, 관련 응용 프로그램, 포럼, 블로그, 소셜 미디어 계정 및 기타 플랫폼 (이하 "사이트")에 제공된 모든 콘텐츠는 제 3 자 출처에서 구입 한 일반적인 정보 용입니다. 우리는 정확성과 업데이트 성을 포함하여 우리의 콘텐츠와 관련하여 어떠한 종류의 보증도하지 않습니다. 우리가 제공하는 컨텐츠의 어떤 부분도 금융 조언, 법률 자문 또는 기타 용도에 대한 귀하의 특정 신뢰를위한 다른 형태의 조언을 구성하지 않습니다. 당사 콘텐츠의 사용 또는 의존은 전적으로 귀하의 책임과 재량에 달려 있습니다. 당신은 그들에게 의존하기 전에 우리 자신의 연구를 수행하고, 검토하고, 분석하고, 검증해야합니다. 거래는 큰 손실로 이어질 수있는 매우 위험한 활동이므로 결정을 내리기 전에 재무 고문에게 문의하십시오. 본 사이트의 어떠한 콘텐츠도 모집 또는 제공을 목적으로하지 않습니다.