Coinbase is in the spotlight again — but this time, it’s not for a new product or partnership. The crypto exchange is dealing with the fallout of a data breach involving rogue customer support agents and an attempted $20 million extortion.
According to the company, a small group of overseas support agents accepted cash bribes to leak user data. The breach affected less than 1% of Coinbase’s monthly users, but that “small” number still led to the exposure of names, phone numbers, email addresses, and even government ID photos in some cases.
What wasn’t touched: passwords, private keys, 2FA codes, or funds. So while the attackers got access to personal data, they didn’t gain the power to move any money.
But here’s where things escalated — the scammers tried to use that stolen info to pressure Coinbase into paying up. They threatened to leak the data online unless the company sent them $20 million in Bitcoin.
Coinbase didn’t flinch.
Instead of quietly settling, the company refused the demand and went public. And rather than giving the criminals a dime, they’re now offering a $20 million reward to anyone who can help identify and convict the people behind the extortion attempt.
CEO Brian Armstrong confirmed on X that no funds or login credentials were compromised, and that Coinbase Prime accounts were untouched. He also said they’ll be reimbursing any customers who were tricked into sending funds to the scammers as part of social engineering or phishing.
Coinbase’s full blog post laid out what happened, what the attackers got, what they didn’t, and what the company is doing next. Some of those steps include:
- Reimbursing affected customers
- Tightening support team access and monitoring
- Opening a new U.S.-based support center
- Adding more scam-prevention measures to high-risk accounts
- Working closely with law enforcement
They’ve already fired the insiders and handed their names to the authorities.
The breach wasn’t due to some complex technical vulnerability — it was a good old-fashioned human weakness: bribery. And that’s what stings most. It’s not just a hack, it’s a betrayal from the inside.
Coinbase is also warning customers to be extra cautious. Scammers might pretend to be Coinbase staff and pressure people into handing over sensitive information or moving funds. The company says they’ll never call, text, or email asking for your password, seed phrase, or for you to send money “for security reasons.”
If you get a message like that, it’s fake. Period.
What stands out in this story is how Coinbase responded. No panic, no cover-up. Just full transparency and a pretty bold move: refusing the ransom and flipping it into a $20M bounty.
In an industry where too many players sweep things under the rug, Coinbase chose to call it out and go on the offensive.
Also Read: SIM Swap Hacker Faces 2-Year Sentence for SEC X Account Hack
