March 15 2026
The U.S. Department of Justice has opened a criminal investigation into a recent burglary at Coinbase, involving bribed foreign employees and a $20 million ransom demand.
Authorities in the United States are investigating how hackers managed to steal sensitive user data from Coinbase by bribing customer service representatives overseas, according to sources close to the matter.
The Justice Department’s criminal division in Washington is looking deeply into the methods the hackers used to gain access to this sensitive data, focusing on bribing customer service representatives in India.
Coinbase’s Chief Legal Officer Paul Grewal confirmed that the company is cooperating with the Department of Justice and other domestic and international law enforcement agencies. He stressed that Coinbase itself is not under investigation and that they welcome the pursuit of criminal prosecution of those responsible.
Coinbase announced the breach on May 15, in which hackers used social engineering techniques to steal user credentials before demanding a $20 million ransom. Interestingly, the ransom demand had been sent via an anonymous email on May 11. It remains unclear why it took several days for the company to publicly announce the breach.
The attackers gained access to names, addresses, phone numbers, government-issued identification, and other account information. The breach may have even begun as early as January. Coinbase has fired the customer service representatives involved and estimates that the breach could cost up to $400 million to resolve.
Coinbase claims that only a small percentage of users, less than 1%, have been affected. However, one of the victims is Roelof Botha, the managing partner of Sequoia Capital, whose personal information was accessed. It shows that even the biggest players are not immune to such attacks. “In the world of cybercrime, no one is ever truly safe,” you might say.
How did the burglary take place?
The hackers used social engineering techniques and bribery of customer service representatives to gain access to sensitive data.
What kind of data was stolen?
A wide range of information was stolen, including names, addresses and government identification.
What is Coinbase doing in response to the breach?
Coinbase is cooperating with authorities and has fired the employees involved. They are working to resolve the damage, which could amount to $400 million.
Whether you are a crypto enthusiast or just interested in the latest developments, this situation once again emphasizes the need for vigilance in the digital world. Let's shape the future of crypto design, with a keen eye for safety and accountability!
Bitcoin (BTC)
Ethereum (ETH)
XRP (XRP)
