Recommended

#BTCCOGWEEK: Celebrate the Classics of Meme Coins
Crypto Deposit Make instant crypto transfers to your futures account
USDT-M Perpetual Futures Trade futures contracts settled in USDT
VIP Fee Discounts Enjoy different fee discounts based on your VIP level
Coin-M Perpetual Futures Trade futures contracts settled in cryptocurrency
Fiat Deposit Buy your favourite coins in seconds
Affiliates Invite friends & get rewarded
Convert Covert your crypto instantly
Support Centre Find our FAQs here
Announcements Find all our official announcements
BTCC Academy Learn about blockchain and crypto
News The latest trends in the crypto market

Promotions

Referral
Campaigns
Assets
Crypto Deposit
Fiat Deposit
Convert
Transfer
Withdraw
My vouchers
Fund history
Dashboard
Account Security
Identity verification
API Management
Transaction Report
Log out
Register
BTCC / BTCC Square / coincentral /
Coinbase Buried Data Breach Bombshell Ahead of IPO—Here’s What Leaked

Coinbase Buried Data Breach Bombshell Ahead of IPO—Here’s What Leaked

Author:
coincentral
Published:
2025-06-03 06:51:52
14
1

Coinbase Hid Massive Data Breach for Months Before Going Public

Silicon Valley’s favorite crypto exchange played hide-the-hack with investors. Again.

How bad was it? We still don’t know—but the timing stinks worse than a rug pull. Right as Coinbase was polishing its S-1 for that sweet public market cash grab, security protocols apparently went out the window.

The real crime? Disclosure delays make FTX look transparent. At least when your house is burning, you yell ’fire.’

TLDR

  • Coinbase knew about a customer data leak since January 2025, months before publicly disclosing it in May
  • An India-based TaskUs employee was caught photographing work computer data with her personal phone
  • The breach affected nearly 70,000 customers and could cost Coinbase up to $400 million
  • Over 200 TaskUs employees were fired in a mass layoff following the incident
  • Coinbase rejected a $20 million ransom demand from hackers who leaked the stolen data

Coinbase knew about a major customer data breach as early as January 2025, according to Reuters sources. The cryptocurrency exchange only disclosed the incident publicly in a May SEC filing.

The breach involved an employee of outsourcing firm TaskUs in India. Five former TaskUs employees told Reuters the worker was caught taking photos of her computer screen with her personal phone.

The employee and a suspected accomplice allegedly sold Coinbase customer information to hackers for bribes. Company investigators briefed other employees about the incident in the Indian city of Indore.

Coinbase was notified immediately when the breach was discovered. Three former employees and another person confirmed the company learned about it right away.

Data Breach Scale and Impact

The incident affected nearly 70,000 Coinbase customers. The exchange estimates the breach could cost up to $400 million in damages.

More than 200 TaskUs employees lost their jobs in a mass layoff that followed. The January layoffs drew attention from Indian media outlets at the time.

Only two specific employees were identified as the main culprits. TaskUs confirmed it fired two workers early this year for illegally accessing client information.

The outsourcing company said it immediately reported the activity to its client. TaskUs did not identify Coinbase by name in its public statement.

Ransom Demand and Public Disclosure

Hackers made a $20 million extortion demand to Coinbase in mid-May. The cryptocurrency exchange rejected the ransom payment request.

The hackers then leaked customer data online after their demands were refused. This prompted Coinbase to make its first public disclosure about the breach.

Company Responses

Coinbase said it cut ties with the TaskUs personnel involved in the incident. The company also ended relationships with other overseas agents and tightened security controls.

TaskUs described the breach as part of a broader criminal campaign. The company said the incident impacted multiple service providers working with the same client.

Police in Indore did not respond to requests for comment about potential arrests. Reuters could not confirm if any criminal charges have been filed.

Previous Security Issues

TaskUs faced similar allegations in 2022 involving crypto wallet maker Ledger. The company was sued over alleged failures to protect customer data from a previous breach.

That lawsuit claimed TaskUs and Shopify knew about a data breach for over a week. The companies were accused of delaying customer notifications about the incident.

Ledger customers continue to face scams and phishing attacks from the earlier breach. Hundreds of thousands of hardware wallet owners had their personal data exposed.

|Square

Get the BTCC app to start your crypto journey

Download on the App Store GEI IT ON Google Play

Get started today Scan to join our 100M+ users

Exchange for a better future

Products
Services
Guides
About Us
Terms & Agreement
Customer Service
Social Media

Risk warning: Digital asset trading is an emerging industry with bright prospects, but it also comes with huge risks as it is a new market. The risk is especially high in leveraged trading since leverage magnifies profits and amplifies risks at the same time. Please make sure you have a thorough understanding of the industry, the leveraged trading models, and the rules of trading before opening a position. Additionally, we strongly recommend that you identify your risk tolerance and only accept the risks you are willing to take. All trading involves risks, so you must be cautious when entering the market.

The world’s longest-running cryptocurrency exchange since 2011 © 2011 - 2025 BTCC.com. All rights reserved