EddieJayonCrypto

 15 May 25

tl;dr

Coinbase experienced a data breach affecting less than 1% of its active monthly users caused by insiders bribed to leak sensitive data, enabling social engineering scams. The compromised data included names, contact details, identity documents, and masked bank and social security information, but lo...

Coinbase recently faced a significant data breach affecting less than 1% of its active monthly users. The breach was orchestrated by insiders bribed to leak sensitive user data, including names, contact details, identity documents, and masked bank and social security information. Notably, login credentials, private keys, and core infrastructure such as Prime wallets remained secure, preventing direct access to funds.


The attackers demanded a hefty $20 million ransom in Bitcoin. However, Coinbase stood firm and refused to pay. Instead, the company announced a $20 million reward for information leading to the arrest and conviction of those responsible, demonstrating a strong stance against cyber extortion.


In response, Coinbase terminated the compromised insiders and is actively cooperating with law enforcement to investigate the breach. The company also pledged to compensate affected users, aiming to mitigate the impact of the incident on its community.


Blockchain investigator ZachXBT linked the breach to a pattern of social engineering attacks that have previously caused significant losses for Coinbase users, estimated at over $300 million annually. Such scams often exploit leaked personal data to impersonate staff and execute sophisticated phishing schemes.


Critics like Wintermute CEO Evgeny Gaevoy argue that current regulatory frameworks, including stringent KYC/AML regimes, inadvertently contribute to such vulnerabilities. They claim these regulations prioritize law enforcement convenience and geopolitical considerations at the expense of user privacy and business agility, ultimately making it easier for criminals to operate.


This incident highlights the growing complexity of safeguarding digital assets and the persistent threats cryptocurrency platforms face from both external attackers and insider risks. It raises important questions about how exchanges can balance security, regulatory compliance, and user trust in an evolving cyber threat landscape.

Disclaimer

The opinions expressed by the writers at Grow My Bag are their own and do not reflect the official stance of Grow My Bag. The content provided on our site is not intended as investment advice, and Grow My Bag is not an investment advisor. We do not endorse buying or selling any cryptocurrencies or digital assets mentioned in our articles. High-risk investments in Bitcoin, cryptocurrencies, and digital assets require thorough due diligence, and all transfers and trades made are at your own risk. Grow My Bag is not responsible for any potential losses and participates in affiliate marketing.
 14 Jun 25
 14 Jun 25
 14 Jun 25