Coinbase has disclosed that a cyberattack earlier this year resulted in the theft of sensitive customer data and could cost the company up to $400 million. The breach occurred in February but was only revealed publicly in mid-May after internal investigations and regulatory notifications were underway.

The attackers reportedly used social engineering techniques rather than exploiting technical flaws. According to the company, a small group of overseas employees and contractors were bribed into handing over access credentials. This allowed unauthorized entry into systems linked to user account data and internal tools.

While Coinbase confirmed that only a limited number of customer accounts were affected, it acknowledged that the attackers attempted to extort the company for $20 million in exchange for not leaking the data. The exchange refused to pay the ransom and instead notified law enforcement. The firm has since offered a $1 million reward for any information that could help identify those responsible for the breach.

The company said its primary trading systems were not impacted, and that all user funds remained secure. Still, it warned affected users to remain vigilant for signs of suspicious account activity and has reinforced internal security protocols. In the context of ongoing risks, many in the crypto community continue to advocate for self-custody. An example is a decentralized crypto wallet that allows users to manage their own funds directly by maintaining access to their private keys, without relying on centralized services. (Source: https://bestwallet.com/tw/)

The breach comes at a time when digital crime is surging in both frequency and severity. According to the FBI’s 2024 Internet Crime Report, more than 850,000 complaints were filed with the Internet Crime Complaint Center (IC3), with total reported losses exceeding $16 billion. That figure marks a 33% increase from 2023, highlighting how cyberattacks are becoming both more common and more financially damaging.

Among the most prevalent crimes reported to the FBI were phishing, data breaches, and extortion, many of which rely on similar tactics to those used in the Coinbase incident. The FBI noted that investment fraud, particularly involving cryptocurrencies, accounted for over $6.5 billion of the losses. The report also revealed that older adults, especially those over 60, bore the brunt of these attacks in terms of financial impact.

Coinbase did not disclose precisely how many customer records were compromised. However, it confirmed that access credentials were misused to reach parts of its support infrastructure. The company has implemented new layers of employee training and internal access management to reduce the likelihood of insider exploitation in the future.

According to Reuters, Coinbase warns that the hackers bypassed conventional digital defenses not by exploiting a vulnerability in software, but by targeting trust – convincing insiders to assist in the intrusion. This reflects a wider cybersecurity trend, in which attackers are focusing on human error or manipulation rather than technical flaws.

Regulatory agencies have been informed of the breach, and further oversight or enforcement actions remain possible. Coinbase continues to cooperate with federal authorities and says its investigation remains active.

Featured Image by Darwin Laganzon from Pixabay