No Result
View All Result
SUBMIT YOUR ARTICLES
  • Login
Saturday, October 4, 2025
TheAdviserMagazine.com
  • Home
  • Financial Planning
    • Financial Planning
    • Personal Finance
  • Market Research
    • Business
    • Investing
    • Money
    • Economy
    • Markets
    • Stocks
    • Trading
  • 401k Plans
  • College
  • IRS & Taxes
  • Estate Plans
  • Social Security
  • Medicare
  • Legal
  • Home
  • Financial Planning
    • Financial Planning
    • Personal Finance
  • Market Research
    • Business
    • Investing
    • Money
    • Economy
    • Markets
    • Stocks
    • Trading
  • 401k Plans
  • College
  • IRS & Taxes
  • Estate Plans
  • Social Security
  • Medicare
  • Legal
No Result
View All Result
TheAdviserMagazine.com
No Result
View All Result
Home Market Research Market Analysis

Coinbase Flips The Coin On Would-Be Extortionists

by TheAdviserMagazine
5 months ago
in Market Analysis
Reading Time: 4 mins read
A A
Coinbase Flips The Coin On Would-Be Extortionists
Share on FacebookShare on TwitterShare on LInkedIn


In a recent example of why managing insider risk is critical, cryptocurrency exchange Coinbase announced that it was the target of an extortion scheme enabled by insiders. Coinbase published a blog indicating that malicious actors recruited overseas contractors who were support agents for the firm to gain access. The cybercriminals then attempted to extort the company for $20 million to cover up the data breach.

Earlier this year in Forrester’s The Top Cybersecurity Threats In 2025 report, Forrester called out a higher risk of insider threats due to disgruntlement, financial distress, and geopolitical conflict.

According to a video from Coinbase CEO Brian Armstrong, cybercriminals were able to access personal information on less than 1% of the company’s monthly transacting users (MTUs). An 8-K filing indicates that cybercriminals accessed company and customer data, including:

Name, address, phone, and email
Masked Social Security numbers (last 4 digits only)
Masked bank account numbers and some bank account identifiers
Government‑ID images (e.g., driver’s license, passport)
Account data (balance snapshots and transaction history)
Limited corporate data (including documents, training material, and communications available to support)

The company said that the attackers weren’t able to access any user passwords, private keys, or funds. Instead, the cybercriminals used the data accessed to socially engineer Coinbase clients. Coinbase dismissed the insiders involved in the incident and is pursuing criminal charges against them through international law enforcement entities.

Estimating The Impact

Coinbase provided a preliminary estimate of expenses related to the incident that range from $180–$400 million, including remediation costs, customer reimbursements, and other potential costs. The actual total could be lower based on insurance claims. Breaches, however, do have a long tail, so once litigation begins, the number could just as easily increase in the years ahead.

Flipping The Coin (Script) On The Extortionists

In a bold and unexpected move, Coinbase has opted to throw the ransom request back in the face of the attackers — instead of paying up for the ransom demand, they are putting the $20 million toward a bounty for information leading to the arrest and conviction of the attackers. This seems to be a first — governments, such as the FBI and the US State Department through Rewards For Justice, have offered bounties before, but no private-sector companies seem to have taken this approach previously.

Rebuilding Customer Trust

The old adage “It’s not the crime; it’s the cover-up” applies to breaches. In this scenario, Coinbase provided remarkably clear, specific, and transparent details about the incident and its impact. This ranges from its public statements and the video from its CEO to the bounty leading to the arrest of the individuals/groups involved and its required 8-K filing.

The response was human and helpful. Coinbase directly addressed customer concerns (such as reimbursements for those tricked into sending funds to attackers), highlighted how customers can stay safe, and outlined actions that Coinbase is taking next.

In the blog post, Coinbase points out that “crypto adoption depends on trust.” The seven levers of trust in Forrester’s trust imperative research include accountability, competence, transparency, and empathy. Coinbase touched on each of these in its announcements and communications about the incident so far. Its behavior, in the short term, demonstrates its commitment to rebuilding customer trust.

Beware Of Low-Cost International Expansion

Coinbase’s announcement includes a warning of which every business needs to take note. Economic volatility puts pressure on businesses to cut costs in various ways, including offshoring. But international expansion brings with it cultural challenges, law enforcement differences, and stark contrasts in employee-to-employer loyalty. Coinbase experienced this firsthand. For those thinking that a combination of guardrails, agentic AI, and AI agents will solve this problem … well … generative AI is not immune to bribes either.

Thwarting Future Social Engineering Attempts

The Coinbase breach was a combination of multiple human-element breach types that resulted in the social engineering of its customers. In addition to the transparency around the breach itself, Coinbase provided all customers with best practices for keeping data and funds safe.

Coinbase clearly states that it will never ask for passwords or two-factor authentication codes and won’t call or text customers to provide information. It states, “If you receive this call, hang up the phone.” Encouraging customers, partners, and employees to pause and ask questions in the face of novelty, authority, and/or urgency is critical to disrupting social engineering attempts. It’s equally important to communicate exactly how you will and will not communicate with them — from the CEO to the HR department to the help desk. If you haven’t already, develop and socialize these messages throughout your organization and ecosystem.

Managing Insider Risk

Forrester data shows that approximately 23% of data breaches were the result of insider incidents. Half of those incidents were the result of malicious insiders. Cybercriminals and other malicious actors are also targeting insiders (like what happened in the Coinbase incident) to gain access to sensitive data and systems.

Managing insider risk requires dedicated focus that starts with the insiders themselves (employees, contractors, and partners) in addition to defined processes and technology. Part of managing insider risk is understanding insider motivations, which include financial distress, disgruntlement, outside influence (again, see the Coinbase example), and others.

Our report, Best Practices: Insider Risk Management, provides best practices for managing insider risk and 10 steps for establishing an insider risk management program.

Let’s Connect

Forrester clients can schedule an inquiry or guidance session with me to do a deeper dive on insider risk and learn how to start their own insider risk management program.



Source link

Tags: CoinCoinbaseExtortionistsFlipswouldbe
ShareTweetShare
Previous Post

How Tariffs Built the World’s Worst Car that Only the Rich Could Have

Next Post

The AI Economic Boom is Just Getting Started

Related Posts

edit post
You Still Need A Design System — Now More Than Ever

You Still Need A Design System — Now More Than Ever

by TheAdviserMagazine
October 3, 2025
0

Design is in the news a lot these days. The US government recently created an initiative mandating better design for...

edit post
In The Age Of AI, Reinvention Is The Future Of Customer Success

In The Age Of AI, Reinvention Is The Future Of Customer Success

by TheAdviserMagazine
October 3, 2025
0

Picture it: New York City, September 2025, NY Customer Success Week.  A room full of over 700 CS practitioners gathered...

edit post
Why Accurate Surgical Procedure Data Is a Strategic Advantage Today?

Why Accurate Surgical Procedure Data Is a Strategic Advantage Today?

by TheAdviserMagazine
October 3, 2025
0

The global healthcare ecosystem is evolving rapidly, with surgical volumes serving as a crucial indicator of infrastructure readiness, patient demand,...

edit post
Bitcoin Rally Gains Steam as Key Resistance Zone Near 5,500 Comes Into View

Bitcoin Rally Gains Steam as Key Resistance Zone Near $125,500 Comes Into View

by TheAdviserMagazine
October 3, 2025
0

Bitcoin broke above $120,000 this week, gaining 7% and ending its bearish trading phase. Heavy inflows into spot ETFs and...

edit post
Hydrogen Fueling Station Market Growth Outlook & Investment Opportunities

Hydrogen Fueling Station Market Growth Outlook & Investment Opportunities

by TheAdviserMagazine
October 3, 2025
0

The global hydrogen fueling station market is witnessing rapid growth as the shift toward clean energy accelerates. Fuel cell electric...

edit post
Agentic Commerce Automates Retail’s Next Frontier

Agentic Commerce Automates Retail’s Next Frontier

by TheAdviserMagazine
October 2, 2025
0

Agentic commerce is spreading. OpenAI just launched Instant Checkout, akin to Perplexity’s Buy With Pro, offering shoppers conversational shopping from...

Next Post
edit post
The AI Economic Boom is Just Getting Started

The AI Economic Boom is Just Getting Started

edit post
Consumer sentiment slides to second-lowest on record as inflation expectations jump after tariffs

Consumer sentiment slides to second-lowest on record as inflation expectations jump after tariffs

  • Trending
  • Comments
  • Latest
edit post
What Happens If a Spouse Dies Without a Will in North Carolina?

What Happens If a Spouse Dies Without a Will in North Carolina?

September 14, 2025
edit post
California May Reimplement Mask Mandates

California May Reimplement Mask Mandates

September 5, 2025
edit post
Does a Will Need to Be Notarized in North Carolina?

Does a Will Need to Be Notarized in North Carolina?

September 8, 2025
edit post
DACA recipients no longer eligible for Marketplace health insurance and subsidies

DACA recipients no longer eligible for Marketplace health insurance and subsidies

September 11, 2025
edit post
‘Quiet luxury’ is coming for the housing market, The Corcoran Group CEO says. It’s not just the Hamptons, Aspen, and Miami anymore

‘Quiet luxury’ is coming for the housing market, The Corcoran Group CEO says. It’s not just the Hamptons, Aspen, and Miami anymore

September 9, 2025
edit post
Tips to Apply for Mental Health SSDI Without Therapy

Tips to Apply for Mental Health SSDI Without Therapy

September 19, 2025
edit post
A Blurry Future for Eye Tracking Stocks

A Blurry Future for Eye Tracking Stocks

0
edit post
Tens of thousands march in Barcelona and Rome to protest Israel’s campaign in Gaza

Tens of thousands march in Barcelona and Rome to protest Israel’s campaign in Gaza

0
edit post
Newsom vows to pull state funding from California colleges that sign Trump’s compact

Newsom vows to pull state funding from California colleges that sign Trump’s compact

0
edit post
Individualism and the Violence of the Identitarian Left

Individualism and the Violence of the Identitarian Left

0
edit post
Apollo Global, Citi, Robinhood among week’s biggest financial movers

Apollo Global, Citi, Robinhood among week’s biggest financial movers

0
edit post
DexCheck Hires Pudgy Penguins NFT Artist As Lead Creative

DexCheck Hires Pudgy Penguins NFT Artist As Lead Creative

0
edit post
A Blurry Future for Eye Tracking Stocks

A Blurry Future for Eye Tracking Stocks

October 4, 2025
edit post
Hot Stocks: KW 40 / 2025 – Elektronik-Komponenten-Aktien!

Hot Stocks: KW 40 / 2025 – Elektronik-Komponenten-Aktien!

October 4, 2025
edit post
Apollo Global, Citi, Robinhood among week’s biggest financial movers

Apollo Global, Citi, Robinhood among week’s biggest financial movers

October 4, 2025
edit post
Tens of thousands march in Barcelona and Rome to protest Israel’s campaign in Gaza

Tens of thousands march in Barcelona and Rome to protest Israel’s campaign in Gaza

October 4, 2025
edit post
Individualism and the Violence of the Identitarian Left

Individualism and the Violence of the Identitarian Left

October 4, 2025
edit post
Colleagues Retiring Younger Than You? How to Stay Relevant or Find Purpose Again

Colleagues Retiring Younger Than You? How to Stay Relevant or Find Purpose Again

October 4, 2025
The Adviser Magazine

The first and only national digital and print magazine that connects individuals, families, and businesses to Fee-Only financial advisers, accountants, attorneys and college guidance counselors.

CATEGORIES

  • 401k Plans
  • Business
  • College
  • Cryptocurrency
  • Economy
  • Estate Plans
  • Financial Planning
  • Investing
  • IRS & Taxes
  • Legal
  • Market Analysis
  • Markets
  • Medicare
  • Money
  • Personal Finance
  • Social Security
  • Startups
  • Stock Market
  • Trading

LATEST UPDATES

  • A Blurry Future for Eye Tracking Stocks
  • Hot Stocks: KW 40 / 2025 – Elektronik-Komponenten-Aktien!
  • Apollo Global, Citi, Robinhood among week’s biggest financial movers
  • Our Great Privacy Policy
  • Terms of Use, Legal Notices & Disclosures
  • Contact us
  • About Us

© Copyright 2024 All Rights Reserved
See articles for original source and related links to external sites.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Home
  • Financial Planning
    • Financial Planning
    • Personal Finance
  • Market Research
    • Business
    • Investing
    • Money
    • Economy
    • Markets
    • Stocks
    • Trading
  • 401k Plans
  • College
  • IRS & Taxes
  • Estate Plans
  • Social Security
  • Medicare
  • Legal

© Copyright 2024 All Rights Reserved
See articles for original source and related links to external sites.