EddieJayonCrypto
5 Jun 25
A recent Coinbase data breach exposed sensitive information of 69,461 users, including names, addresses, partial Social Security numbers, and ID images. Following the breach, victims have received fraudulent physical letters impersonating Coinbase and its identity protection partner IDX, aiming to s...
The recent Coinbase data breach has exposed sensitive personal information of nearly 70,000 users, including names, addresses, partial Social Security numbers, and ID images. This breach has triggered a worrying development where victims are now targeted through offline phishing scams via fraudulent physical mail that impersonates Coinbase and its identity protection partner IDX.Scammers send letters designed to trick recipients into revealing more personal information, exploiting the leaked data to advance credit protection scams. This offline phishing tactic marks a shift from the usual digital scams, emphasizing increased risks of identity fraud and social engineering.The breach was traced to bribed overseas customer support contractors, highlighting vulnerabilities in third-party access. While Coinbase asserts that passwords and crypto assets remain safe, the extent of data compromised has serious implications for users.In response, Coinbase introduced enhanced security measures, offered voluntary credit monitoring services to affected users, and announced a $20 million reward for information leading to the attackers. However, the company has not publicly addressed the fraudulent mail scam.Experts and authorities advise users to stay vigilant by monitoring credit reports, carefully verifying all communications purportedly from Coinbase, and promptly reporting any suspicious mail or activity to Coinbase and relevant law enforcement agencies.This incident underscores the evolving nature of cyber threats in the crypto space, where breaches extend beyond the virtual domain into tangible real-world risks.