Coinbase has confirmed that nearly 70,000 customers were affected by a data breach, where overseas support staff who were bribed by criminals handed over user information. The breach occurred on December 26, 2024, but wasn’t discovered until May 11.
The stolen data includes names, addresses, phone numbers, email addresses, Social Security Numbers, bank account numbers, and images tied to government IDs. However, the attackers did not gain access to passwords, seed phrases, or private keys.
Coinbase has fired the support staff involved in facilitating the breach and is offering affected customers identity protection and credit monitoring services for one year. The company expects to spend between $180 million and $400 million on remediating the attack.
CEO Brian Armstrong released a video apologizing to customers and promising to pursue justice against those responsible. Coinbase has also set up a $20 million bounty for information that could lead to the attackers’ arrest and conviction.
Source: https://www.theregister.com/2025/05/21/coinbase_confirms_insider_breach_affects