Coinbase revealed that a total of 69,461 customers had their personal and financial information compromised in a data breach that lasted for several months, as reported last week. The cryptocurrency company confirmed this number in a filing with Maine’s attorney general, as mandated by the state’s data breach notification law. The breach, which dates back to December 26, 2024, and continued until recently, involved a hacker who demanded a $20 million ransom to delete the stolen data. Despite the hacker’s threats, Coinbase refused to pay the ransom. The hacker managed to access customer data by bribing Coinbase customer support employees, compromising information such as names, email and postal addresses, phone numbers, government-issued identity documents, account balances, and transaction histories, raising concerns about potential targeting of high-net-worth customers.
