tl;dr

A recent Coinbase data breach exposed sensitive information of 69,461 users, including names, addresses, partial Social Security numbers, and ID images. Following the breach, victims have received fraudulent physical letters impersonating Coinbase and its identity protection partner IDX, aiming to s...

The recent Coinbase data breach has exposed sensitive personal information of nearly 70,000 users, including names, addresses, partial Social Security numbers, and ID images. This breach has triggered a worrying development where victims are now targeted through offline phishing scams via fraudulent physical mail that impersonates Coinbase and its identity protection partner IDX.

Scammers send letters designed to trick recipients into revealing more personal information, exploiting the leaked data to advance credit protection scams. This offline phishing tactic marks a shift from the usual digital scams, emphasizing increased risks of identity fraud and social engineering.

The breach was traced to bribed overseas customer support contractors, highlighting vulnerabilities in third-party access. While Coinbase asserts that passwords and crypto assets remain safe, the extent of data compromised has serious implications for users.

In response, Coinbase introduced enhanced security measures, offered voluntary credit monitoring services to affected users, and announced a $20 million reward for information leading to the attackers. However, the company has not publicly addressed the fraudulent mail scam.

Experts and authorities advise users to stay vigilant by monitoring credit reports, carefully verifying all communications purportedly from Coinbase, and promptly reporting any suspicious mail or activity to Coinbase and relevant law enforcement agencies.

This incident underscores the evolving nature of cyber threats in the crypto space, where breaches extend beyond the virtual domain into tangible real-world risks.

Disclaimer

The opinions expressed by the writers at Grow My Bag are their own and do not reflect the official stance of Grow My Bag. The content provided on our site is not intended as investment advice, and Grow My Bag is not an investment advisor. We do not endorse buying or selling any cryptocurrencies or digital assets mentioned in our articles. High-risk investments in Bitcoin, cryptocurrencies, and digital assets require thorough due diligence, and all transfers and trades made are at your own risk. Grow My Bag is not responsible for any potential losses and participates in affiliate marketing.
 27 Jun 25
 27 Jun 25
 27 Jun 25