Coverage from Bleeping Computer indicates that Coinbase has confirmed an insider data breach where a contractor improperly accessed the information of approximately 30 customers in December. This incident was detected by Coinbase's security team, and the individual involved no longer provides services to the company. Impacted users were notified and offered identity theft protection.The breach involved a single Coinbase contractor accessing customer data, including names, email addresses, phone numbers, and KYC information. This incident is separate from a previously disclosed breach linked to TaskUs, a third-party service provider. The revelation followed brief Telegram posts by threat actors displaying screenshots of an internal Coinbase support interface, though it remains unclear if these actors were directly involved in the breach or merely possessed the stolen data. Business Process Outsourcing (BPO) companies, like those providing support services, are increasingly targeted by threat actors due to their access to sensitive customer information and internal systems.Source: Bleeping Computer
Related Events
Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds




