A Coinbase data breach filing with the Maine Attorney General finally gives us some more detail than Coinbase’s vague “less than 1% of monthly transacting users”. 69,461 people were affected, and Coinbase says the data breach occurred on December 26, 2024.
It took them almost five months between the incident and the incident disclosure, although the company has since admitted it knew customer support agents were suspiciously accessing customer data as far back as January.
SEC requires material cybersecurity incidents be disclosed within four business days; state laws often have a 30-day disclosure deadline. It’s not clear if customers outside the US were affected; if so, other disclosure laws may apply.
@molly0xfff Coinbase is hiring an insider threat analyst, and I've applied for the position in the past (although I hate crypto and that's probably why I didn't get a callback lol)
*shrug* get fucked I guess lol
@molly0xfff https://www.linkedin.com/jobs/view/insider-threat-analyst-at-coinbase-4230048425
Posted a week ago, but there have been other postings.
Molly White
NosirrahSec 🏴☠️ guillotine enthusiast
⚯ Michel de Cryptadamus ⚯