Coinbase, a major US-based cryptocurrency exchange, reported that criminals accessed personal data of its customers to execute crypto-theft scams. The perpetrators are demanding $20 million to keep the information private. CEO Brian Armstrong revealed that some customer service agents outside the US were bribed to share sensitive data, including names, birth dates, and partial social security numbers.

Data Breach and Social Engineering

The stolen information enables attackers to perform social engineering attacks. They impersonate Coinbase support to deceive customers into transferring funds. Armstrong stated, "The stolen data allows them to conduct social engineering attacks where they can call our customers impersonating Coinbase customer support and try to trick them into sending their funds to the attackers." Such tactics have led to numerous breaches in large companies recently.

Coinbase has not disclosed the number of affected customers or those who fell victim to these scams. However, the company assured that it would compensate any impacted individuals. Social engineering remains a prevalent hacking method due to human vulnerability within networks.

Financial Impact and Response

In a Securities and Exchange Commission filing, Coinbase estimated remediation and reimbursement costs between $180 million and $400 million. The filing also noted that some customer service agents had accessed data without a business need in recent months. These employees were terminated, and fraud prevention measures were intensified.

The attackers contacted Coinbase via email on Sunday, demanding a $20 million bitcoin ransom to prevent public disclosure of the stolen data. Armstrong declared the company's refusal to pay the ransom, opting instead for a $20 million reward for information leading to the attackers' capture.

Company's Stance on Extortion

Armstrong emphasized their commitment to pursuing justice against those threatening Coinbase customers. He stated, "For these would-be extortionists or anyone seeking to harm Coinbase customers, know that we will prosecute you and bring you to justice." This firm stance underscores Coinbase's dedication to protecting its users and maintaining security.

The incident highlights ongoing challenges in safeguarding digital assets against sophisticated cyber threats. As companies enhance security protocols, they must remain vigilant against evolving tactics used by cybercriminals.

With inputs from PTI