A hacker group claims to have stolen sensitive customer information and is demanding $20 million in Bitcoin in exchange for not leaking the data. In response, Coinbase CEO Brian Armstrong said the company won’t negotiate with criminals.
Instead, they’re offering a $20 million bounty to anyone who helps identify and capture the attackers. The breach—believed to be one of the most serious in the company’s history—has exposed how vulnerable even the biggest players in crypto can be to social engineering and internal threats.
What Was Compromised?
According to reports, the hackers managed to bribe Coinbase customer support agents, gaining access to internal systems. Once inside, they harvested sensitive user data, including names, phone numbers, email addresses, and partial Social Security numbers. Also included were masked bank account details, government-issued ID images, and even balance snapshots.
Coinbase has confirmed the breach and said it has moved quickly to isolate the affected systems and notify impacted users. However, the scale and depth of the data leak have raised alarm bells across the crypto space, especially among users who expect centralized platforms to maintain the highest levels of security.
JUST IN: Hackers are demanding $20M in Bitcoin from Coinbase, threatening to leak customer data.
CEO Brian Armstrong says they won’t pay and are offering a $20M reward for info leading to the attackers’ arrest.
— Bitcoin News (@BitcoinNewsCom) May 15, 2025
This breach is not only a reputational blow to Coinbase but also a reminder of the risks tied to centralized exchanges, often called CEXs in the industry. While platforms like Coinbase offer convenience and fiat onramps, they also act as honeypots for attackers due to the amount of sensitive data they store.
Why This Underscores the Need for DeFi and Zero-Knowledge Privacy
The Coinbase breach has reignited a broader conversation around decentralization, privacy, and the limits of traditional security models. In decentralized finance (DeFi), users keep control of their data and assets. And with zero-knowledge (ZK) technologies—cryptographic methods that allow data to be verified without revealing the data itself—privacy is baked in by design.
major security breach at coinbase
hackers bribed support agents and stole sensitive customer data, including:
– names, addresses, phone numbers
– partial social security number
– masked bank info
– government id images
– balance snapshotsthis is why defi matters. this is why… pic.twitter.com/DKSkVhfHuY
— Suhail Kakar (,
) (@SuhailKakar) May 15, 2025
A well-constructed ZK app can’t be socially engineered in the same way. It doesn’t require storing personal data or giving access to third-party support agents. No central authority means no single point of failure. For crypto’s privacy-conscious users, this incident may be the push they need to explore decentralized tools.
Disclaimer
The information discussed by Altcoin Buzz is not financial advice. This is for educational, entertainment, and informational purposes only. Any information or strategies are thoughts and opinions relevant to the accepted risk tolerance levels of the writer/reviewers, and their risk tolerance may differ from yours. We are not responsible for any losses you may incur due to any investments directly or indirectly related to the information provided. Bitcoin and other cryptocurrencies are high-risk investments, so please do your due diligence. Copyright Altcoin Buzz Pte Ltd.
The post Coinbase Hackers Demand $20M in Bitcoin appeared first on Altcoin Buzz.
