Coinbase Rejects $20 Million Ransom After Insider Data Leak

Coinbase rejects $20M ransom demand after insider data breach, under 1% of users affected, offers $20M reward for leads.

Posted by by Antonella Martin
  • Coinbase declined a $20M ransom after insiders leaked user data in a phishing breach.
  • Less than 1% of Coinbase users were affected by the insider-driven data breach.
  • Coinbase offers a $20M reward for leads on attackers behind the support agent data leak.

Coinbase, a top cryptocurrency exchange globally, has declined a $20 million ransom request after a data breach allegedly involving insider participation. The event, revealed by the company on May 15, involved support contractors who were reportedly bribed to gain access to customer data. 

Internal Breach Linked to Outside Threat Actors 

According to a May 15 blog post, the incident originated from outside attackers who focused on customer support representatives hired from abroad. These people were contacted and bribed to exploit their system privileges.

By means of this illicit access, attackers acquired confidential information associated with a small group of users. Coinbase stated that there were no compromised passwords, private keys, or funds during the incident. 

The assailants tried to blackmail the business by asking for $20 million to keep the stolen data confidential. Coinbase promptly rejected the request and chose to enhance its internal and legal actions instead. The company revealed that under 1% of its users who transact monthly were impacted. Although the impact was minimal, the incident has sparked worries regarding the safety of third-party collaborations. 

Ransom Request Denied Amid Increasing Impersonation Frauds 

Following the rejection of the extortion demand, Coinbase shifted its attention to accountability. It is currently providing a $20 million reward for any tips that could result in the identification and prosecution of those responsible for the breach. The platform highlighted that scams, phishing attacks, and misuse of data continue to be major breaches of its rules.

Coinbase observed a significant rise in impersonation scams in 2024. The firm has allegedly been the most faked cryptocurrency brand by fraudsters this year. Numerous schemes depend on creating a deceptive sense of trust with victims by masquerading as reliable service providers.

The event has intensified Coinbase’s current initiatives to improve security, particularly regarding external contractors who have access to the system. Inquiries are in progress to assess the complete extent of the internal participation and recognize all persons linked to the assault. 

Security Protocols and Implementation Actions Strengthen 

In reaction to the breach, Coinbase is evaluating its customer support operations and enhancing its internal monitoring systems. The firm has reaffirmed its dedication to user safety and platform security. It has also confirmed that its main services, like Coinbase Prime, were unaffected by the breach. 

Coinbase collaborates with law enforcement to locate cybercriminals and guarantee they are held accountable for their misconduct. The organization urges individuals with knowledge about the attackers to report it because safeguarding user data remains their highest priority.

The crypto industry is experiencing a growing pattern of internal employee-led systematic scams targeting platforms. The public’s refusal of Coinbase to pay the ransom demonstrates its dedication to transparency and legal approaches instead of engaging with cybercriminals.

Tags:
Profile picture of Antonella Martin
Antonella Martin Posted by

Editor and Journalist

Antonella is a cryptocurrency and news writer who travels the world, finding inspiration in diverse cultures. She cherishes moments sitting on the beach, watching sunsets. Through her writing, Antonella explores the dynamic realm of cryptocurrency and delivers insightful news. Her work encapsulates both the excitement of finance and the serenity of nature's beauty.