Coinbase rejected a $20 million ransom demand after insiders leaked user data in a phishing scheme. Less than 1% of users were affected, the firm said.
Coinbase, the world’s third-largest cryptocurrency exchange, was hit by a $20 million ransom demand as cyber criminals attempted to steal sensitive user data from the exchange.
Cyber criminals have bribed and recruited a “group of overseas support agents” to steal Coinbase customer data to facilitate social engineering schemes such as phishing attacks.
“These insiders abused their access to customer support systems to steal the account data for a small subset of customers,” wrote Coinbase in a May 15 X post, adding that no passwords, private keys, funds, or Coinbase Prime accounts were affected.
Read more