Rogue insiders are being brought to justice amid allegations of bribery involving Coinbase customer records, as reported by CEO Brian Armstrong. In a post on X, Armstrong revealed that Hyderabad police have arrested a former customer service agent from Coinbase and assured that this is just the beginning of ongoing apprehensions.
This arrest follows a significant breach disclosed by Coinbase last May, during which it was revealed that a group of overseas support agents had allegedly accepted bribes from cybercriminals in exchange for access to nearly 70,000 customer records. The compromised data included sensitive information such as names, addresses, phone numbers, email addresses, government ID images, account data, masked Social Security numbers, bank account details, and limited corporate information. Fortunately, the breach did not involve two-factor authentication codes, private keys, or direct access to user wallets.
However, the perpetrators reportedly exploited the stolen information to deceive some users into transferring cryptocurrency, fraudulently posing as Coinbase employees. They also attempted to extort the company for a ransom of $20 million. Instead of complying with the ransom demand, Coinbase announced a reward fund of $20 million for information leading to the arrest and conviction of the attackers. It remains unclear whether the recent arrest is tied to any rewards from this fund, as inquiries to Coinbase went unanswered.
Armstrong’s announcement about the arrest was met with criticism from users on X, many of whom questioned the company’s decision to outsource customer service to India rather than employing US-based representatives. Critics cited Coinbase’s history of inadequate customer support, with reports indicating high rates of account takeover incidents and a lack of response in helping users regain access to compromised accounts or recover stolen funds.
Coinbase has faced ongoing scrutiny regarding its customer service standards, particularly following reports from CNBC in 2021 highlighting rampant account takeover attacks and the company’s struggles in assisting affected users.
While Coinbase did not respond to specific queries regarding its customer service practices or the status of the bounty fund, a spokesperson affirmed the company’s commitment to pursuing fraudsters targeting its customer base. This effort is underscored by a December 19 blog post announcing collaboration with the Brooklyn District Attorney’s Office in a separate investigation. The case involves a Brooklyn man, Ronald Spektor, accused of impersonating a Coinbase representative to steal nearly $16 million from about 100 users.
Spektor, only 23 years old, allegedly executed a prolonged social engineering scam, convincing victims that their accounts were vulnerable and persuading them to share their cryptocurrency, which was then redirected to a wallet controlled by him. Law enforcement has so far recovered over $600,000 of the funds allegedly obtained by Spektor, according to Coinbase.
Despite similarities between the two incidents, Coinbase clarified that they are not directly connected. The ongoing response to these attacks emphasizes the critical need for robust security measures and customer trust within the cryptocurrency sector.
