Kantrowitz, Goldhamer & Graifman, P.C. is actively investigating a significant data breach involving Coinbase Global, Inc. (“Coinbase”), one of the world’s largest cryptocurrency exchanges with over 100 million customers. This breach has exposed sensitive user information to cybercriminals, raising serious concerns about insider misconduct, security lapses, and privacy violations.
On or around May 11, 2025, Coinbase publicly disclosed that a group of rogue overseas support agents, working in concert with cybercriminals, accessed and exfiltrated the personal data of up to 1% of Coinbase’s user base—an estimated 1 million individuals. According to Coinbase, these support contractors were bribed to abuse their privileged access to internal systems, ultimately stealing sensitive customer information and internal documentation.
Following the breach, the attackers demanded a $20 million ransom in exchange for not publicly releasing the stolen data. Coinbase refused to pay the ransom, instead pledging a $20 million reward for information leading to the attackers’ identification and prosecution.
Coinbase has confirmed that while customer passwords, private keys, and wallet access credentials were not stolen, the compromised data could still be used in targeted phishing or social engineering schemes against affected individuals.
STOLEN INFORMATION MAY INCLUDE:
- Full name, mailing address, phone number, and email address
- Masked Social Security number (last four digits)
- Masked bank account numbers and identifiers
- Government-issued ID images (e.g., driver’s license, passport)
- Account data such as transaction history and balance snapshots
- Limited internal corporate data accessible to support staff
This breach highlights systemic vulnerabilities in Coinbase’s internal access controls and contractor oversight. The exploitation of support channels by insider threats—combined with the scale of affected individuals—suggests potential violations of consumer protection, data security, and privacy laws.
WHO MAY BE AFFECTED?
All Coinbase users whose data was accessed or who received notice of exposure in the May 2025 breach involving rogue support agents and cybercriminal activity.
YOUR LEGAL RIGHTS
Kantrowitz, Goldhamer & Graifman, P.C. is investigating whether Coinbase failed to implement reasonable security protocols to prevent insider abuse, and whether it took sufficient steps to notify and protect affected users.
If you received a notice from Coinbase about this breach, or if you believe your personal data may have been exposed or misused, you may be eligible to join a potential class action lawsuit. Legal remedies may include compensation for out-of-pocket losses, credit monitoring, emotional distress, or enhanced security measures.
To learn more or to explore your legal rights, please contact:
Melissa R. Emert, Esq. or Gary S. Graifman, Esq.
Kantrowitz, Goldhamer & Graifman, P.C.
135 Chestnut Ridge Road – Suite 200, Montvale, NJ 07645
Phone: (866) 896-0935
Email: [email protected] or [email protected]
We encourage affected users to monitor their Coinbase and financial accounts closely, change login credentials, and remain vigilant for phishing or impersonation attempts. Our firm is here to help you determine whether you may be eligible for recovery.