No Result
View All Result
SUBMIT YOUR ARTICLES
  • Login
Monday, October 27, 2025
TheAdviserMagazine.com
  • Home
  • Financial Planning
    • Financial Planning
    • Personal Finance
  • Market Research
    • Business
    • Investing
    • Money
    • Economy
    • Markets
    • Stocks
    • Trading
  • 401k Plans
  • College
  • IRS & Taxes
  • Estate Plans
  • Social Security
  • Medicare
  • Legal
  • Home
  • Financial Planning
    • Financial Planning
    • Personal Finance
  • Market Research
    • Business
    • Investing
    • Money
    • Economy
    • Markets
    • Stocks
    • Trading
  • 401k Plans
  • College
  • IRS & Taxes
  • Estate Plans
  • Social Security
  • Medicare
  • Legal
No Result
View All Result
TheAdviserMagazine.com
No Result
View All Result
Home Market Research Market Analysis

Coinbase Flips The Coin On Would-Be Extortionists

by TheAdviserMagazine
5 months ago
in Market Analysis
Reading Time: 4 mins read
A A
Coinbase Flips The Coin On Would-Be Extortionists
Share on FacebookShare on TwitterShare on LInkedIn


In a recent example of why managing insider risk is critical, cryptocurrency exchange Coinbase announced that it was the target of an extortion scheme enabled by insiders. Coinbase published a blog indicating that malicious actors recruited overseas contractors who were support agents for the firm to gain access. The cybercriminals then attempted to extort the company for $20 million to cover up the data breach.

Earlier this year in Forrester’s The Top Cybersecurity Threats In 2025 report, Forrester called out a higher risk of insider threats due to disgruntlement, financial distress, and geopolitical conflict.

According to a video from Coinbase CEO Brian Armstrong, cybercriminals were able to access personal information on less than 1% of the company’s monthly transacting users (MTUs). An 8-K filing indicates that cybercriminals accessed company and customer data, including:

Name, address, phone, and email
Masked Social Security numbers (last 4 digits only)
Masked bank account numbers and some bank account identifiers
Government‑ID images (e.g., driver’s license, passport)
Account data (balance snapshots and transaction history)
Limited corporate data (including documents, training material, and communications available to support)

The company said that the attackers weren’t able to access any user passwords, private keys, or funds. Instead, the cybercriminals used the data accessed to socially engineer Coinbase clients. Coinbase dismissed the insiders involved in the incident and is pursuing criminal charges against them through international law enforcement entities.

Estimating The Impact

Coinbase provided a preliminary estimate of expenses related to the incident that range from $180–$400 million, including remediation costs, customer reimbursements, and other potential costs. The actual total could be lower based on insurance claims. Breaches, however, do have a long tail, so once litigation begins, the number could just as easily increase in the years ahead.

Flipping The Coin (Script) On The Extortionists

In a bold and unexpected move, Coinbase has opted to throw the ransom request back in the face of the attackers — instead of paying up for the ransom demand, they are putting the $20 million toward a bounty for information leading to the arrest and conviction of the attackers. This seems to be a first — governments, such as the FBI and the US State Department through Rewards For Justice, have offered bounties before, but no private-sector companies seem to have taken this approach previously.

Rebuilding Customer Trust

The old adage “It’s not the crime; it’s the cover-up” applies to breaches. In this scenario, Coinbase provided remarkably clear, specific, and transparent details about the incident and its impact. This ranges from its public statements and the video from its CEO to the bounty leading to the arrest of the individuals/groups involved and its required 8-K filing.

The response was human and helpful. Coinbase directly addressed customer concerns (such as reimbursements for those tricked into sending funds to attackers), highlighted how customers can stay safe, and outlined actions that Coinbase is taking next.

In the blog post, Coinbase points out that “crypto adoption depends on trust.” The seven levers of trust in Forrester’s trust imperative research include accountability, competence, transparency, and empathy. Coinbase touched on each of these in its announcements and communications about the incident so far. Its behavior, in the short term, demonstrates its commitment to rebuilding customer trust.

Beware Of Low-Cost International Expansion

Coinbase’s announcement includes a warning of which every business needs to take note. Economic volatility puts pressure on businesses to cut costs in various ways, including offshoring. But international expansion brings with it cultural challenges, law enforcement differences, and stark contrasts in employee-to-employer loyalty. Coinbase experienced this firsthand. For those thinking that a combination of guardrails, agentic AI, and AI agents will solve this problem … well … generative AI is not immune to bribes either.

Thwarting Future Social Engineering Attempts

The Coinbase breach was a combination of multiple human-element breach types that resulted in the social engineering of its customers. In addition to the transparency around the breach itself, Coinbase provided all customers with best practices for keeping data and funds safe.

Coinbase clearly states that it will never ask for passwords or two-factor authentication codes and won’t call or text customers to provide information. It states, “If you receive this call, hang up the phone.” Encouraging customers, partners, and employees to pause and ask questions in the face of novelty, authority, and/or urgency is critical to disrupting social engineering attempts. It’s equally important to communicate exactly how you will and will not communicate with them — from the CEO to the HR department to the help desk. If you haven’t already, develop and socialize these messages throughout your organization and ecosystem.

Managing Insider Risk

Forrester data shows that approximately 23% of data breaches were the result of insider incidents. Half of those incidents were the result of malicious insiders. Cybercriminals and other malicious actors are also targeting insiders (like what happened in the Coinbase incident) to gain access to sensitive data and systems.

Managing insider risk requires dedicated focus that starts with the insiders themselves (employees, contractors, and partners) in addition to defined processes and technology. Part of managing insider risk is understanding insider motivations, which include financial distress, disgruntlement, outside influence (again, see the Coinbase example), and others.

Our report, Best Practices: Insider Risk Management, provides best practices for managing insider risk and 10 steps for establishing an insider risk management program.

Let’s Connect

Forrester clients can schedule an inquiry or guidance session with me to do a deeper dive on insider risk and learn how to start their own insider risk management program.



Source link

Tags: CoinCoinbaseExtortionistsFlipswouldbe
ShareTweetShare
Previous Post

How Tariffs Built the World’s Worst Car that Only the Rich Could Have

Next Post

The AI Economic Boom is Just Getting Started

Related Posts

edit post
1 Stock to Buy, 1 Stock to Sell This Week: Meta Platforms, Starbucks

1 Stock to Buy, 1 Stock to Sell This Week: Meta Platforms, Starbucks

by TheAdviserMagazine
October 26, 2025
0

Fed policy decision, ‘Mag 7’ earnings, and Trump-Xi meeting will be in focus this week. Meta is expected to report...

edit post
Where We Go Next After NY Climate Week

Where We Go Next After NY Climate Week

by TheAdviserMagazine
October 24, 2025
0

The 2025 New York climate week spurred discussions. What stood out for us was that everyone’s takeaways were rooted in...

edit post
What I’ve Found So Far

What I’ve Found So Far

by TheAdviserMagazine
October 24, 2025
0

Since July, I’ve attended the Hubspot Inbound, Oracle AI World, and SupportLogic’s Enterprise AI for CX conferences. I’ve also been...

edit post
California’s TFAIA Act Revives Conversation On AI Regulations

California’s TFAIA Act Revives Conversation On AI Regulations

by TheAdviserMagazine
October 24, 2025
0

Defying the odds and lobbying pressure, California’s SB 53, known as the Transparency in Frontier Artificial Intelligence Act (TFAIA), is...

edit post
Risk Lessons From The Louvre

Risk Lessons From The Louvre

by TheAdviserMagazine
October 24, 2025
0

On a Sunday morning in Paris, a small crew arrived outside the Louvre’s Galerie d’Apollon in a truck equipped with...

edit post
Retailers: Holiday 2025 Is Here!

Retailers: Holiday 2025 Is Here!

by TheAdviserMagazine
October 24, 2025
0

To help retailers and brands prepare for the 2025 end-of-year shopping season, we recently published our annual guide to the...

Next Post
edit post
The AI Economic Boom is Just Getting Started

The AI Economic Boom is Just Getting Started

edit post
Consumer sentiment slides to second-lowest on record as inflation expectations jump after tariffs

Consumer sentiment slides to second-lowest on record as inflation expectations jump after tariffs

  • Trending
  • Comments
  • Latest
edit post
77-year-old popular furniture retailer closes store locations

77-year-old popular furniture retailer closes store locations

October 18, 2025
edit post
Pennsylvania House of Representatives Rejects Update to Child Custody Laws

Pennsylvania House of Representatives Rejects Update to Child Custody Laws

October 7, 2025
edit post
What to Do When a Loved One Dies in North Carolina

What to Do When a Loved One Dies in North Carolina

October 8, 2025
edit post
Another Violent Outburst – Democrats Inciting Civil Unrest

Another Violent Outburst – Democrats Inciting Civil Unrest

October 24, 2025
edit post
Probate vs. Non-Probate Assets: What’s the Difference?

Probate vs. Non-Probate Assets: What’s the Difference?

October 17, 2025
edit post
California Attorney Pleads Guilty For Role In 2M Ponzi Scheme

California Attorney Pleads Guilty For Role In $912M Ponzi Scheme

October 15, 2025
edit post
Southwest Airlines (LUV) Earnings: 3Q25 Key Numbers

Southwest Airlines (LUV) Earnings: 3Q25 Key Numbers

0
edit post
Dell Technologies (DELL) Could Benefit From 2026 Data Center Refresh, Says Piper Sandler

Dell Technologies (DELL) Could Benefit From 2026 Data Center Refresh, Says Piper Sandler

0
edit post
High Dividend 50: Blue Owl Capital Corporation

High Dividend 50: Blue Owl Capital Corporation

0
edit post
The Core Of The Peace Proposal

The Core Of The Peace Proposal

0
edit post
Is It OpenSea or Blur?

Is It OpenSea or Blur?

0
edit post
How Many People Actually Work for the U.S. Government? The Latest Shock Figure & What It Means for You

How Many People Actually Work for the U.S. Government? The Latest Shock Figure & What It Means for You

0
edit post
The Core Of The Peace Proposal

The Core Of The Peace Proposal

October 27, 2025
edit post
Coforge shares rally 6% after Q2 net profit rockets 86% YoY. Should you buy, sell or hold?

Coforge shares rally 6% after Q2 net profit rockets 86% YoY. Should you buy, sell or hold?

October 26, 2025
edit post
Milei’s party on track to win Argentina election in big comeback

Milei’s party on track to win Argentina election in big comeback

October 26, 2025
edit post
HSBC to recognize .1 billion in provision after court ruling in Madoff case

HSBC to recognize $1.1 billion in provision after court ruling in Madoff case

October 26, 2025
edit post
Accel and Prosus team up to back early-stage Indian startups

Accel and Prosus team up to back early-stage Indian startups

October 26, 2025
edit post
What Saudi Arabia and Bangladesh can teach Silicon Valley

What Saudi Arabia and Bangladesh can teach Silicon Valley

October 26, 2025
The Adviser Magazine

The first and only national digital and print magazine that connects individuals, families, and businesses to Fee-Only financial advisers, accountants, attorneys and college guidance counselors.

CATEGORIES

  • 401k Plans
  • Business
  • College
  • Cryptocurrency
  • Economy
  • Estate Plans
  • Financial Planning
  • Investing
  • IRS & Taxes
  • Legal
  • Market Analysis
  • Markets
  • Medicare
  • Money
  • Personal Finance
  • Social Security
  • Startups
  • Stock Market
  • Trading

LATEST UPDATES

  • The Core Of The Peace Proposal
  • Coforge shares rally 6% after Q2 net profit rockets 86% YoY. Should you buy, sell or hold?
  • Milei’s party on track to win Argentina election in big comeback
  • Our Great Privacy Policy
  • Terms of Use, Legal Notices & Disclosures
  • Contact us
  • About Us

© Copyright 2024 All Rights Reserved
See articles for original source and related links to external sites.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Home
  • Financial Planning
    • Financial Planning
    • Personal Finance
  • Market Research
    • Business
    • Investing
    • Money
    • Economy
    • Markets
    • Stocks
    • Trading
  • 401k Plans
  • College
  • IRS & Taxes
  • Estate Plans
  • Social Security
  • Medicare
  • Legal

© Copyright 2024 All Rights Reserved
See articles for original source and related links to external sites.