I have recordings proving Coinbase knew about breach months before disclosure
https://jonathanclark.com/posts/coinbase-breach-timeline.html
#HackerNews #Coinbase #Breach #Disclosure #Breach #Timeline #Security #Concerns #Cryptocurrency
Alex Akselrod
boosted
#Coinbase's "Base" #blockchain went down when #AWS failed.
#Base is pure decentralization theater. there is no decentralization, there's just a buzzword you can now throw out any time you don't want to comply with financial regulations.
#buildOnBase #crypto #decentralization #cryptocurrency #BrianArmstrong
#Coinbase's "Base" #blockchain went down when #AWS failed.
#Base is pure decentralization theater. there is no decentralization, there's just a buzzword you can now throw out any time you don't want to comply with financial regulations.
#buildOnBase #crypto #decentralization #cryptocurrency #BrianArmstrong
On a reclaimed island in Malaysia, crypto and tech entrepreneurs are building software, chomping down Australian ribeye — and getting schooled in a radical blueprint for creating new sovereign states from scratch. https://www.japantimes.co.jp/business/2025/09/01/tech/tech-utopia-malaysia-forest-city/?utm_medium=Social&utm_source=mastodon #business #tech #malaysia #southeastasia #cryptocurrencies #tech #bitcoin #coinbase
🚀 BREAKING: The #Coinbase#CEO has discovered the secret to success—fire anyone who dares to question the almighty #AI 🤖. Apparently, if you’re not coding Skynet by lunch, you better update your LinkedIn. 🤦♂️ Because who cares about quality when you have buzzwords? #InnovationOrElse
https://techcrunch.com/2025/08/22/coinbase-ceo-explains-why-he-fired-engineers-who-didnt-try-ai-immediately/#Success#Buzzwords#Innovation#Disruption#HackerNews #ngated
mkb
boosted
my testing of Phone Assistants continues with #Mitra. I have Mitra calling all the scammers that texted me pretending to be #Coinbase and asking them if they need help and why they're impersonating Coinbase 😆
first two didn't answer, the others are still happening. i like that you can follow the call when someone picks up.
my testing of Phone Assistants continues with #Mitra. I have Mitra calling all the scammers that texted me pretending to be #Coinbase and asking them if they need help and why they're impersonating Coinbase 😆
first two didn't answer, the others are still happening. i like that you can follow the call when someone picks up.
@cryptadamist and after the other custodians shat the bed
prime trust gambling the entrusted assets on terra-luna, *goodness me*
@davidgerard i actually have some faith that coinbase custody is better run than literally anyone else based on what i've seen on chain - for instance, unlike say a company like bybit, they don't store billions of dollars of crypto in one wallet and instead break everything into chunks of ~$20 million (at least for stablecoins; i assume other stuff is similar).
so i suspect that coinbase custody is set up in such a way that even if they lose one wally, the other wallets aren't immediately also compromised.
at the same time, with that much money on the line every gifted teenager in north korea is probably laser focused on hacking #coinbase...
David Gerard
boosted
@davidgerard p.s. just to put some numbers on exactly how centralized the global bitcoin supply is in #coinbase, it looks like they are custodying 80% of the ETFs (~$113 bn) plus MSTR (~$50bn) and a couple others, and then also their customers.
taking into account lost bitcoins, they're probably custodying more than 10% of all the bitcoins in the world
@davidgerard my guess is that they will fork the bitcoin chain to undo the hack
@davidgerard p.s. just to put some numbers on exactly how centralized the global bitcoin supply is in #coinbase, it looks like they are custodying 80% of the ETFs (~$113 bn) plus MSTR (~$50bn) and a couple others, and then also their customers.
taking into account lost bitcoins, they're probably custodying more than 10% of all the bitcoins in the world
Coinbase says its data breach affects at least 69,000 customers• @TechCrunch
「 In a blog post, Coinbase said the hacker demanded $20 million in a ransom payment to delete the data, which Coinbase refused to pay. The company said the hacker bribed Coinbase customer support workers into accessing customers’ data over a period of several months 」
https://techcrunch.com/2025/05/21/coinbase-says-its-data-breach-affects-at-least-69000-customers/
A Coinbase data breach filing with the Maine Attorney General finally gives us some more detail than Coinbase’s vague “less than 1% of monthly transacting users”. 69,461 people were affected, and Coinbase says the data breach occurred on December 26, 2024.
It took them almost five months between the incident and the incident disclosure, although the company has since admitted it knew customer support agents were suspiciously accessing customer data as far back as January.
SEC requires material cybersecurity incidents be disclosed within four business days; state laws often have a 30-day disclosure deadline. It’s not clear if customers outside the US were affected; if so, other disclosure laws may apply.
A Coinbase data breach filing with the Maine Attorney General finally gives us some more detail than Coinbase’s vague “less than 1% of monthly transacting users”. 69,461 people were affected, and Coinbase says the data breach occurred on December 26, 2024.
It took them almost five months between the incident and the incident disclosure, although the company has since admitted it knew customer support agents were suspiciously accessing customer data as far back as January.
Coinbase has disclosed a substantial customer data breach, blaming it on “rogue overseas support agents”. This follows months of crypto security researchers warning about apparent security issues at the company.
According to Coinbase, the data thieves bribed members of Coinbase’s support team, which is based overseas and reportedly makes very little money. It seems Coinbase has been aware of a breach for several months, but only reported it on May 14.
At least five lawsuits have been filed about the breach in the days since, but a change to Coinbase’s customer agreement that went into effect on May 15 may make it more challenging for customers to obtain relief.
At least five lawsuits have been filed against Coinbase since the breach disclosure.5 However, an incredibly conveniently timed update to Coinbase’s customer terms, announced on April 12 and applying to disputes filed after May 15, may make it more challenging for these cases to succeed. While Coinbase’s customer terms previously contained some text seeking to limit class action lawsuits and force customers into arbitration, the update made some key changes, most significantly aiming to force lawsuits to be filed in New York. The new version also expands clauses limiting collective litigation, mass arbitration, and sharing of information between separate parties involved in arbitration proceedings against Coinbase. It also aims to force any claims that do proceed in court rather than arbitration to go to a bench trial instead of a trial by jury, reduces thresholds triggering batch arbitration, and much more prominently highlights the “Class, Collective, Representative, and Mass Action Waiver and Jury Trial Waiver”.
Of the five lawsuits filed against Coinbase for the data breach thus far, all are class actions, none were filed before May 15, and two were filed outside of New York.
According to Coinbase, the data thieves bribed some members of Coinbase’s poorly paid offshore customer support team, who they described as “rogue overseas support agents”, who are reportedly earning less than $5,000 annually.2 Coinbase’s cybersecurity disclosure filing with the SEC admitted that they had been grappling with this issue for months: “The threat actor appears to have obtained this information by paying multiple contractors or employees working in support roles outside the United States to collect information from internal Coinbase systems to which they had access in order to perform their job responsibilities. These instances of such personnel accessing data without business need were independently detected by the Company’s security monitoring in the previous months.”3 Bloomberg later reported that “the hackers did have near-constant access to some of Coinbase Global Inc.’s most valuable customer data since January”, citing an anonymous source familiar with the incident.4
![Coinbase
On May 12, Coinbase announced it will join the S&P 500 as its “first and only crypto company”.1a This is the latest change that may see more American investors inadvertently exposed to the cryptocurrency industry via index funds, following MicroStrategy’s entry into the NASDAQ-100 in December 2024 [I72].
Their joy was likely tempered when, only two days later on May 14, they had to announce a data breach that exposed customer data including names, addresses, phone numbers, email addresses, images of government ID documents, account balance and transaction data, and masked social security and bank account numbers. Although leaks like this typically lead to an uptick in phishing attempts, where scammers use the private information to contact customers and more convincingly impersonate Coinbase employees, the leak of account balance data and customer addresses is also particularly concerning given the recent spike in violent attacks and kidnappings targeting wealthy crypto holders.
Crypto security researchers have been warning for months about Coinbase’s evidently poor security practices and lack of attention to customer complaints, and describing hacks in which victims reported being scammed by attackers who seemed to have access to private Coinbase data [I76]. In February, zachxbt wrote: “Coinbase needs to urgently make changes as more and more users are being scammed for tens of millions every month. ... Coinbase is in a position where they have the power to make](https://media.hachyderm.io/media_attachments/files/114/542/355/565/850/346/original/ed7d433d8bf281ce.png)
Coinbase
On May 12, Coinbase announced it will join the S&P 500 as its “first and only crypto company”.1a This is the latest change that may see more American investors inadvertently exposed to the cryptocurrency industry via index funds, following MicroStrategy’s entry into the NASDAQ-100 in December 2024 [I72].
Their joy was likely tempered when, only two days later on May 14, they had to announce a data breach that exposed customer data including names, addresses, phone numbers, email addresses, images of government ID documents, account balance and transaction data, and masked social security and bank account numbers. Although leaks like this typically lead to an uptick in phishing attempts, where scammers use the private information to contact customers and more convincingly impersonate Coinbase employees, the leak of account balance data and customer addresses is also particularly concerning given the recent spike in violent attacks and kidnappings targeting wealthy crypto holders.
Crypto security researchers have been warning for months about Coinbase’s evidently poor security practices and lack of attention to customer complaints, and describing hacks in which victims reported being scammed by attackers who seemed to have access to private Coinbase data [I76]. In February, zachxbt wrote: “Coinbase needs to urgently make changes as more and more users are being scammed for tens of millions every month. ... Coinbase is in a position where they have the power to make
Coinbase CEO Brian Armstrong has characterized my reporting on the timing of the user agreement update as a “conspiracy theory”. He did not comment on the substantive new hurdles introduced by the change, nor a question about the long delay in disclosing the breach.
Tweet by Brian Armstrong: We started notifying users about this on April 11th, so it had nothing to do with the data breach. You’re giving us far too much credit in your conspiracy theory. The class action waiver has always been in our arbitration agreement btw, so this change (amongst many others) just made the user terms consistent.
2:41 PM · May 20, 2025
Reply by Molly White: It did more than “make the user terms consistent” — the clause forcing litigation in New York is entirely new, for example.
Screenshot of text: "While Coinbase’s customer terms previously contained some text seeking to limit class action lawsuits and force customers into arbitration, the update made some key changes, most significantly aiming to force lawsuits to be filed in New York. The new version also expands clauses limiting collective litigation, mass arbitration, and sharing of information between separate parties involved in arbitration proceedings against Coinbase. It also aims to force any claims that do proceed in court rather than arbitration to go to a bench trial instead of a trial by jury, reduces thresholds triggering batch arbitration, and much more prominently highlights the 'Class, Collective, Representative, and Mass Action Waiver and Jury Trial Waiver'."
Reply by Molly White: And if you knew about the data breach as far back as at least April 11 (or much further, according to outside reporting from Bloomberg), why did it take you another month to disclose with the SEC?
Coinbase CEO Brian Armstrong responded to my reporting on this timing to describe it as a “conspiracy theory”, claiming that customers were being notified before the user agreement change, and that the change merely “made the user terms consistent”.6
He did not immediately respond to a clarification that the change was much more substantial than he described, including the entirely new forum clause. He also did not respond to a question asking why it took Coinbase more than a month to disclose the breach to the SEC (per his admission; more, if Bloomberg’s reporting is accurate), when such disclosures are required within four business days of companies discovering material cybersecurity incidents.7
Coinbase has disclosed a substantial customer data breach, blaming it on “rogue overseas support agents”. This follows months of crypto security researchers warning about apparent security issues at the company.
According to Coinbase, the data thieves bribed members of Coinbase’s support team, which is based overseas and reportedly makes very little money. It seems Coinbase has been aware of a breach for several months, but only reported it on May 14.
At least five lawsuits have been filed about the breach in the days since, but a change to Coinbase’s customer agreement that went into effect on May 15 may make it more challenging for customers to obtain relief.
At least five lawsuits have been filed against Coinbase since the breach disclosure.5 However, an incredibly conveniently timed update to Coinbase’s customer terms, announced on April 12 and applying to disputes filed after May 15, may make it more challenging for these cases to succeed. While Coinbase’s customer terms previously contained some text seeking to limit class action lawsuits and force customers into arbitration, the update made some key changes, most significantly aiming to force lawsuits to be filed in New York. The new version also expands clauses limiting collective litigation, mass arbitration, and sharing of information between separate parties involved in arbitration proceedings against Coinbase. It also aims to force any claims that do proceed in court rather than arbitration to go to a bench trial instead of a trial by jury, reduces thresholds triggering batch arbitration, and much more prominently highlights the “Class, Collective, Representative, and Mass Action Waiver and Jury Trial Waiver”.
Of the five lawsuits filed against Coinbase for the data breach thus far, all are class actions, none were filed before May 15, and two were filed outside of New York.
According to Coinbase, the data thieves bribed some members of Coinbase’s poorly paid offshore customer support team, who they described as “rogue overseas support agents”, who are reportedly earning less than $5,000 annually.2 Coinbase’s cybersecurity disclosure filing with the SEC admitted that they had been grappling with this issue for months: “The threat actor appears to have obtained this information by paying multiple contractors or employees working in support roles outside the United States to collect information from internal Coinbase systems to which they had access in order to perform their job responsibilities. These instances of such personnel accessing data without business need were independently detected by the Company’s security monitoring in the previous months.”3 Bloomberg later reported that “the hackers did have near-constant access to some of Coinbase Global Inc.’s most valuable customer data since January”, citing an anonymous source familiar with the incident.4
Coinbase
On May 12, Coinbase announced it will join the S&P 500 as its “first and only crypto company”.1a This is the latest change that may see more American investors inadvertently exposed to the cryptocurrency industry via index funds, following MicroStrategy’s entry into the NASDAQ-100 in December 2024 [I72].
Their joy was likely tempered when, only two days later on May 14, they had to announce a data breach that exposed customer data including names, addresses, phone numbers, email addresses, images of government ID documents, account balance and transaction data, and masked social security and bank account numbers. Although leaks like this typically lead to an uptick in phishing attempts, where scammers use the private information to contact customers and more convincingly impersonate Coinbase employees, the leak of account balance data and customer addresses is also particularly concerning given the recent spike in violent attacks and kidnappings targeting wealthy crypto holders.
Crypto security researchers have been warning for months about Coinbase’s evidently poor security practices and lack of attention to customer complaints, and describing hacks in which victims reported being scammed by attackers who seemed to have access to private Coinbase data [I76]. In February, zachxbt wrote: “Coinbase needs to urgently make changes as more and more users are being scammed for tens of millions every month. ... Coinbase is in a position where they have the power to make