Coinbase stated a former buyer help agent was arrested in India amid an investigation into insider bribery and buyer information theft.
Chief Government Officer Brian Armstrong stated on Dec. 27 the arrest concerned an ex-support agent and thanked Hyderabad Police for help.
What Coinbase advised regulators
Coinbase described the incident as an extortion try constructed on insider entry.
In a Might 14 submitting, the corporate stated it acquired an electronic mail demanding fee and claiming the sender had obtained buyer data and inner paperwork.
Coinbase stated the data was taken from programs used for buyer help and account administration and later used for social engineering makes an attempt towards clients.
Armstrong wrote:
Now we have zero tolerance for unhealthy habits and can proceed to work with regulation enforcement to deliver unhealthy actors to justice.
Timeline and buyer influence
A state notification filed in Maine listed the breach date as Dec. 26, 2024.
The submitting stated insider wrongdoing was found Might 11, 2025.
It reported 69,461 affected individuals.
Reuters beforehand reported that the U.S. Division of Justice opened an investigation into the incident earlier in 2025.
Prices and broader safety focus
Coinbase estimated remediation and voluntary reimbursements may value $180 million to $400 million.
In its Q3 2025 shareholder letter, Coinbase recorded $48 million in “information theft incident” prices in Q3 after $307 million in Q2, totaling $355 million.
The episode has refocused consideration on id and entry controls in help workflows quite than on custody expertise.
The case additionally comes amid ongoing considerations about trade safety and person verification, as highlighted by Bitcoin’s long-running emphasis on self-custody and community reliability.