Thursday, May 15, 2025

Coinbase Hack

Expected losses to reach up to $400 million

While the financial impact is still being assessed and Coinbase didn't reveal how many customers were deceived into sending funds to the attackers in follow-up social engineering attacks, the company estimates that the resulting expenses will be "within the range of approximately $180 million to $400 million" for remediation and customer reimbursements.

Coinbase added that it will open a new support hub in the U.S., reimburse affected customers tricked into sending funds to the attackers following social engineering attacks, and increase investments in insider‑threat detection, security threat simulation, and automated response to prevent future breach attempts.

Coinbase hack - every system is subject to human counterparty risk - #... | TikTok

AP News

7 hours ago

Coinbase said cyber crooks stole customer information and demanded $20 million ransom payment

The company also advised customers to be suspicious of scammers impersonating Coinbase employees and attempting to trick them into transferring funds or asking them for sensitive information such as passwords or 2FA codes.

If this happens, the crypto exchange recommends hanging up because it never asks for account information over the phone or pressures customers into transferring assets to other wallets. To defend against similar attacks, you should enable two-factor authentication and turn on withdrawal allow‑listing, which ensures secure transfers.

"To the customers affected, we're sorry for the worry and inconvenience this incident caused. We'll keep owning issues when they arise and investing in world‑class defenses—because that's how we protect our customers and keep the crypto economy safe for everyone," Coinbase added.

"Coinbase will voluntarily reimburse retail customers who mistakenly sent funds to the scammer as a direct result of this incident prior to the date of this post, following a review to confirm the facts."

Coinbase's stock soared 24% after the crypto exchange joined the S&P 500, a stock market index that includes 500 leading companies listed on U.S. stock exchanges.

Coinbase data breach exposes customer info and government IDs

By Sergiu Gatlan
May 15, 2025
09:28 AM

Coinbase

Coinbase, a cryptocurrency exchange with over 100 million customers, has disclosed that cybercriminals working with rogue support agents stole customer data and demanded a $20 million ransom not to publish the stolen information.

The company said it would not pay the ransom but would establish a $20 million reward fund for any leads that could help find the attackers who coordinated this attack.

The disclosure comes after the criminals behind the breach emailed Coinbase on May 11, demanding a $20 million ransom to prevent public disclosure of stolen information about certain customer accounts and internal documentation.

bordois on X: "COINBASE HACKED. This is why we DeFi. Why KYC at coinbase or anywhere else when you can make crypto limit order trades right on https://t.co/CvBG6AY8U4? https://t.co/drOKTm609z" / X

What people are saying

DID COINBASE GET HACKED?! HERE'S EXACTLY WHAT'S GOING ON! (DATA BREACH)

4K+ views · 9 hours ago

DustyBC Crypto News · YouTube

Crypto & early-stage investor

Tech Thursday: Crypto traders on alert as coinbase discloses major data breach

4 views · 4 hours ago

Radio 702 · YouTube

Johannesburg-based radio station

Fortune

13 hours ago

Coinbase puts $20 million bounty on crooks who tried to extort firm over stolen data | Fortune Crypto

Times of India

7 hours ago

Coinbase warns of up to $400 million hit from cyberattack

By Niket Nishant and Chris Prentice

May 15, 20252:13 PM PDTUpdated 2 hours ago

Summary

Hackers bribed staff overseas
Company rejected $20 million ransom demand
Stock to join S&P 500 index in days

May 15 (Reuters) - Coinbase (COIN.O)

The company received an email from an unknown threat actor on May 11, claiming to have information about certain customer accounts as well as internal documents.

While some data — including names, addresses and emails — was stolen, the hackers did not get access to login credentials or passwords, Coinbase said.

It will, however, reimburse customers who were tricked into sending funds to the attackers.

Hackers had paid multiple contractors and employees working in support roles outside the U.S. to collect information. The company has fired those involved, it said.

Separately, the U.S. Securities and Exchange Commission had begun probing whether Coinbase's had misstated its user figures, and whether the firm had appropriate compliance in place to meet know-your-customer and Bank Secrecy Act rules designed to prevent money laundering, two sources familiar with the matter told Reuters.
Coinbase denied the SEC was probing the company's compliance with know-your-customer and Bank Secrecy Act rules.

Coinbase shares extended losses after the report and were last down 6.5%.

"This is a hold-over investigation from the prior administration about a metric we stopped reporting two and a half years ago, which was fully disclosed to the public," Coinbase's chief legal officer, Paul Grewal, said.

"While we strongly believe this investigation should not continue, we remain committed to working with the SEC to bring this matter to a close."

The SEC declined to comment.

Coinbase Suffers Internal Data Breach. Do This Now to Protect Your Crypto and Data

CRACKS IN CRYPTO

The latest developments come days before the company is set to join the benchmark S&P 500 index (.SPX), casting a shadow over what was expected to be a landmark moment for the crypto industry.

Security remains a challenge for the crypto industry despite its growing mainstream acceptance. In February, Bybit disclosed a hack in which around $1.5 billion of digital tokens were stolen — widely dubbed the biggest crypto heist of all time.

"The cyberattack may push the industry to adopt stricter employee vetting and introduce some reputational risks," said Bo Pei, analyst at U.S. Tiger Securities.

Funds stolen by hacking crypto platforms totaled $2.2 billion in 2024, according to a report from Chainalysis.

"As our nascent industry grows rapidly, it draws the eye of bad actors, who are becoming increasingly sophisticated in the scope of their attacks," said Nick Jones, founder of crypto firm Zumo.

The firm now also faces a lawsuit, filed in the Southern District of New York, alleging the world's largest crypto exchange failed to secure and safeguard personally identifiable information of millions of former and current customers, the filing showed.

Coinbase has refused to pay a ransom demand of $20 million from the attackers and is working with law enforcement agencies. It has instead established a $20 million reward for information on the hackers.