Coinbase披露了針對性的網絡攻擊，涉及賄賂海外承包商，導致數據洩露

Coinbase透露了一個有針對性的網絡攻擊，涉及賄賂海外承包商，導致大量數據洩露，影響其每月活躍用戶的1％。

Coinbase has disclosed a major data breach that impacted less than 1% of its monthly active users. The breach was caused by a targeted cyberattack that involved a group of overseas contractors who were bribed by attackers to grant them access to internal tools.

Coinbase透露了一個重大數據洩露，該數據違反了其每月活躍用戶的不到1％。違規行為是由有針對性的網絡攻擊引起的，該網絡攻擊涉及一群海外承包商，他們被攻擊者賄賂以允許他們使用內部工具。

The attackers managed to extract some customer data, including partial bank information, addresses, phone numbers, and masked Social Security digits. However, no funds, passwords, private keys, or Coinbase Prime accounts used by institutions were affected.

攻擊者設法提取了一些客戶數據，包括部分銀行信息，地址，電話號碼和掩蓋的社會保障數字。但是，沒有影響機構使用的資金，密碼，私鑰或Coinbase Prime帳戶。

According to a report by Blockworks, the incident began with a group of contractors working for a company that provides services to Coinbase in a foreign country being targeted by the attackers.

根據Blockworks的一份報告，該事件始於一組為一家公司工作的承包商，該公司在攻擊者針對的外國為Coinbase提供服務。

The attackers, who were described as experienced in social engineering, managed to befriend the contractors online over the course of several months and eventually bribed them to grant them remote access to internal tools used by Coinbase.

被描述為社會工程經驗的攻擊者在幾個月的過程中設法在線與承包商成為朋友，並最終賄賂他們，使他們遠程訪問Coinbase使用的內部工具。

Once they gained access, the attackers extracted a data dump that included names, email addresses, phone numbers, city and state of residence, last four digits of bank account numbers, and the first five digits of Social Security numbers in a masked format. The aim was to use this information to impersonate Coinbase and extract additional assets from users through phishing scams.

一旦獲得訪問權限，攻擊者就提取了一個數據轉儲，其中包括名稱，電子郵件地址，電話號碼，城市和居住狀態，銀行帳號的最後四位數字以及以掩蓋格式的前五位社會安全號碼。目的是使用這些信息來模仿Coinbase並通過網絡釣魚騙局從用戶中提取其他資產。

Coinbase said it discovered the breach and took steps to shut it down. It is now offering a reward of up to $20 million for information leading to the arrest and conviction of the attackers.

Coinbase說，它發現了違規行為，並採取了措施將其關閉。現在，它提供了多達2000萬美元的獎勵，以獲取導致襲擊者被捕和定罪的信息。

The company is also working with blockchain analytics firms to identify addresses on blockchains that are being used by the attackers, and is engaging with crypto exchanges to freeze any stolen assets and monitor the flow of funds. It has also notified relevant authorities in the US and other countries about the breach and is cooperating with their investigations.

該公司還與區塊鏈分析公司合作，以確定攻擊者正在使用的區塊鏈的地址，並正在與加密交易所進行互動以冷凍任何被盜資產並監視資金流動。它還通知了美國和其他國家的相關當局有關違規行為，並正在與他們的調查合作。

Coinbase is taking several steps to prevent future attacks and mitigate the risks arising from this incident. These steps include:

Coinbase正在採取幾個步驟來防止未來的攻擊，並減輕這一事件引起的風險。這些步驟包括：

* Implementing additional ID verification procedures for all customers making withdrawals above a certain amount.

*為所有提款超過一定金額的所有客戶實施其他ID驗證程序。

* Launching a new customer support hub in the US to reduce reliance on third-party contractors.

*在美國推出新的客戶支持中心，以減少對第三方承包商的依賴。

* Introducing new protections for users, such as real-time scam alerts and enhanced monitoring of accounts that are flagged as high risk.

*針對用戶引入新的保護措施，例如實時騙局警報以及對被標記為高風險的帳戶的增強監控。

It is also deploying new internal programs to detect insider threats and will be running continuous red-team testing to identify vulnerabilities in its systems.

它還正在部署新的內部程序來檢測內部人士威脅，並將運行連續的紅線測試以識別其係統中的漏洞。

Coinbase said it is committed to doing everything it can to help the customers who were impacted by this breach. It will be reaching out to these customers directly and will provide them with regular updates on the company's progress in remedying the situation.

Coinbase表示，它致力於竭盡所能，以幫助受到這種違規影響的客戶。它將直接與這些客戶聯繫，並將為他們提供有關公司在糾正情況方面的進度的定期更新。

The company is also prepared to take further action to protect its customers, such as applying for coverage under relevant US federal programs to help provide complete restitution to customers who may be defrauded by the attackers in follow-up scams.

該公司還準備採取進一步的行動來保護其客戶，例如在相關的美國聯邦計劃下申請承保範圍，以幫助向可能被攻擊者欺騙的客戶提供全面恢復原狀。

This incident comes at a crucial moment for Coinbase, which is on the verge of becoming the first crypto-native company to be included in the S&P 500 index.

對於Coinbase的關鍵時刻，這一事件即將成為第一家被納入標準普爾500指數中的加密本地公司。

The inclusion, which is expected to take place on Monday, will place a strong spotlight on the exchange’s performance and operations.

預計將在周一舉行的包容性將對交易所的表現和運營引起強烈關注。

With analysts estimating the total cost of the data breach to be in the range of $180 million to $400 million, the focus will likely turn to the exchange’s security infrastructure and operational resilience in handling such incidents.

分析師估計數據洩露的總成本在1.8億至4億美元之間，重點可能會轉向交易所的安全基礎架構和運營彈性，以處理此類事件。

Coinbase said it is currently completing a full assessment of the financial losses, legal claims, and potential recoveries arising from the breach. The company will disclose the full extent of the impact in its upcoming financial statements.

Coinbase表示，目前正在完成對因違規而引起的財務損失，法律索賠和潛在回收率的全面評估。該公司將在即將到來的財務報表中披露影響的全部範圍。