The attacker demanded a $20 million ransom in exchange for not releasing the stolen data. Coinbase, one of the largest cryptocurrency exchan...
 |
| The attacker demanded a $20 million ransom in exchange for not releasing the stolen data. |
Exposed information includes full names, residential addresses, email accounts, and in some cases, scans of government-issued identification documents. The breach is expected to cost Coinbase between $180 million and $400 million in damages and remediation expenses.
According to the official report, the attackers gained unauthorized access through compromised credentials of a third-party vendor. Upon discovering the breach, Coinbase quickly moved to isolate the threat, notify impacted users, and escalate the issue to federal authorities. The attacker demanded a $20 million ransom in exchange for not releasing the stolen data. Coinbase refused to pay the ransom and has since involved law enforcement agencies in the ongoing investigation.
Coinbase has committed to fully reimbursing customers for verified losses. Additional protective measures are being implemented, including multi-factor authentication enforcement, third-party audit reviews, and enhanced insider threat detection tools.
“We take our users’ trust seriously and are working tirelessly to ensure their data is protected moving forward,” said a spokesperson from Coinbase’s security team.
The company recommends all users immediately reset passwords, enable biometric security, and monitor account activity via their official security portal. This breach is a stark reminder of the challenges facing digital finance platforms. As cryptocurrency adoption grows, so does the target on crypto institutions. Experts suggest that increased regulation and robust internal governance are now essential for platforms that handle millions of customer identities and assets.
