Coinbase Targeted in $20M Extortion Plot After Customer Data Breach

Coinbase, a leading U.S. cryptocurrency exchange, revealed it was targeted by cybercriminals who stole customer data and demanded $20 million to keep it private. The breach, reported on Sunday, involved a “small subset” of customer information, including partial social security numbers, bank account details, and identity documents like passports and drivers licenses. Fortunately, no passwords, private keys, or funds were compromised. Coinbase, set to join the S&P 500 on May 19, swiftly fired support agents—based outside the U.S.—who were bribed to facilitate the theft.

The criminals tried to pose as Coinbase to trick users into sending cryptocurrency and then demanded money from the company to hide their actions. Coinbase refused to pay the $20 million and instead offered that amount as a reward for tips leading to the hackers‘ arrest and conviction. The company also promised to cover losses for affected customers, with estimated costs between $180 million and $400 million. After the news, Coinbase’s stock fell 7.2% in New York, even though it had jumped 25% earlier in the week due to the S&P 500 news.

The cryptocurrency world has seen a surge in cyberattacks. According to Chainalysis, hacks on exchanges rose 21% last year, causing $2.2 billion in losses. Hackers linked to North Korea stole $1.3 billion alone. For example, Bybit, another platform, lost $1.5 billion in a major attack. Coinbases breach shows that weaknesses, like poorly written software or dishonest insiders, remain a big problem.

This incident comes at a time when cryptocurrencies are gaining popularity. Bitcoin recently hit over $100,000—its highest point since January—after President Donald Trump‘s election. Trump’s pledge to relax regulations has led the SEC to settle more than a dozen crypto-related lawsuits, including one against Coinbase for possible securities law violations.

On another note, Coinbase is working with the SEC on a separate investigation about a customer growth metric it stopped using after its 2021 public listing. Chief Legal Officer Paul Grewal called it an old issue and stressed that the company is being open and working to resolve it.

Dovile Silenskyte from WisdomTree said Coinbase‘s inclusion in the S&P 500 is a big deal, showing that cryptocurrencies are becoming a normal part of the financial world. “It’s not just a niche anymore,” she said, pointing to its growing importance. As Coinbase deals with this breach and regulatory challenges, its actions show a focus on being open and protecting customers in a risky industry.