Coinbase disclosed an insider data theft incident involving the breach of customer information, leading to a $20 million extortion demand. The company is actively reimbursing affected customers and enhancing security measures to prevent future incidents.
Affected: Coinbase, its customers
Affected: Coinbase, its customers
Keypoints
- Insider data theft involved less than 1% of Coinbaseβs active users, approximately 100,000 individuals.
- The threat actor acquired sensitive personal data but did not gain access to customer funds or private keys.
- Coinbase responded by terminating involved personnel, increasing security measures, and warning affected customers.
- The breach is estimated to cost Coinbase between $180 million and $400 million in damages and remediation efforts.
- Security recommendations include enabling strong 2FA, using withdrawal allow-lists, and being cautious of scam calls impersonating Coinbase staff.
Read More: https://thecyberexpress.com/coinbase-insider-data-theft/