Coinbase says rogue contractor data breach affects 69,461 users

When Coinbase said last week that it had refused to pay a $20 million ransom tied to an insider leak, the company estimated the data theft touched “less than one percent” of monthly transacting users. A mandatory filing to the Maine Attorney General now pins the number at 69,461 customers nationwide and dates the breach back to last December.

According to the new disclosure form, a group of unidentified overseas customer-support contractors began siphoning data on December 26, 2024, but the breach didn’t come to light until Coinbase’s security team spotted suspicious activity on May 11 this year, the same day Coinbase received the extortion demand.

In the filing, Coinbase described the incident simply as “insider wrongdoing.”

Read more at SecurityWeek