A data breach at Coinbase has triggered serious concerns after attackers accessed private user details—including home addresses—by bribing outsourced customer support staff.
Though only a small fraction of users were affected, the risks extend well beyond financial loss.
The breach, which could cost Coinbase up to $400 million in reimbursements, compromised sensitive user info without exposing passwords or funds. However, experts warn that such leaks drastically increase the threat of social engineering attacks and even physical violence.
Investor and entrepreneur Michael Arrington criticized Coinbase’s reliance on low-cost support, warning that leaked address and balance data could endanger lives. “This isn’t just bad for business—it’s deadly,” he said on X.
The threat is far from theoretical. Earlier this month, a French crypto investor’s father was kidnapped and tortured by criminals demanding a €5 million crypto ransom. He was rescued after two days, but the message is clear: public crypto exposure can invite real-world danger.
CertiK reports that social engineering attacks—like phishing and extortion—have caused over $1 billion in losses this year. Its co-founder, Ronghui Gu, says exchanges need to overhaul their approach, shifting from tech-only solutions to layered defenses that also consider human vulnerabilities.
As digital assets rise in value, so too does the need to protect the individuals behind the wallets—not just the coins themselves.
The U.S. Department of Justice has sentenced Dwayne Golden, 57, of Pennsylvania to 97 months in prison for orchestrating a fraudulent crypto investment scheme that stole over $40 million from investors.
The first half of 2025 has become the most damaging six-month period in crypto history, with over $2.1 billion stolen across 75+ separate incidents, according to new data.
A new breed of cyber-attack is sweeping through crypto media, exploiting site pop-ups and wallet-connect prompts instead of smart-contract bugs.
CoinMarketCap, one of the most widely used crypto data tracking platforms, is reportedly facing a front-end security breach, with multiple users encountering a suspicious prompt to verify their wallets.