Coinbase says ‘rogue’ support agents helped steal customer data
1 min read
Summary
Crypto exchange Coinbase has disclosed that a cyberattack earlier this year involved the bribery of company employees.
In a regulatory disclosure and a blog, Coinbase said the attackers obtained various types of customer data, including names, addresses and ID images.
Using this information, the attackers are said to have contacted users and tricked them into transferring money, although Coinbase stressed that it did not result in any breach of wallets or accounts.
The company said it was working with law enforcement to press charges related to the incident, which is believed to have started in late April.
Coinbase said it had been contacted by the attackers, who demanded $20m in exchange for not releasing the information they had obtained, a demand that was rejected.
The unveiling of the bribery is likely to heighten fears over the robustness of security procedures at major crypto firms.