Coinbase在對其最新數據洩露的調查發起調查後面臨調查

美國司法部（DOJ）已經對Coinbase最近的數據洩露進行了調查，該數據洩露是世界上最大的加密貨幣交易所之一。

The U.S. Department of Justice (DOJ) has launched an investigation into a recent data breach at Coinbase (NASDAQ:COIN), one of the largest cryptocurrency exchanges, reports Bloomberg.

據彭博社報導，美國司法部（DOJ）已經對最大的加密貨幣交易所之一的Coinbase（NASDAQ：COIN）進行了調查。

According to the report, the department in charge of the probe is the criminal division of the DOJ, based in Washington. DOJ experts are working to establish what happened leading to the breach and who was involved.

根據該報告，負責調查的部門是位於華盛頓的司法部的刑事部。司法部專家正在努力確定導致違規和參與人員的事情。

Earlier this year, a group of cybercriminals was able to infiltrate Coinbase. Reports say these attackers bribed certain employees and contractors in India in order to obtain personal information from the company’s customers. This type of attack is known as social engineering because it focuses on tricking people instead of computer systems.

今年早些時候，一組網絡犯罪分子能夠滲透共同插曲。報告說，這些攻擊者賄賂了印度的某些僱員和承包商，以便從公司的客戶那裡獲得個人信息。這種攻擊被稱為社會工程，因為它專注於欺騙人們而不是計算機系統。

Following the attack, the criminals went on to demand a payment of $20 million from Coinbase. Threatening to make the data public, the criminals are said to have used a ransomware strategy to extort funds from the exchange.

襲擊發生後，罪犯繼續向Coinbase支付2000萬美元。威脅要公開數據，據說犯罪分子已經使用勒索軟件策略從交易所勒索了資金。

However, Coinbase ultimately declined payment and is now dealing with the fallout. According to a recent statement by the company, it is budgeting between $180 million and $400 million for the year to fix the problem. This will include repairing systems and reimbursing customers who were affected.

但是，Coinbase最終拒絕付款，現在正在處理後果。根據該公司最近的一份聲明，該公司的預算在1.8億至4億美元之間，以解決該問題。這將包括維修系統和受影響的客戶報銷客戶。

Compared to other exchanges, Coinbase has been largely immune to most problems. It is one of the last key players in the crypto world to be hit by a major cyberattack.

與其他交易所相比，共插基在很大程度上對大多數問題有所免疫。這是加密貨幣世界中最後一個受到主要網絡攻擊擊中的主要參與者之一。

Additionally, similar attacks were recently targeted at other major exchanges like Binance and Kraken. However, no customer data was stolen at Binance or Kraken as they were able to stop the breaches before they could happen.

此外，最近在Binance和Kraken等其他主要交易所進行了類似的攻擊。但是，沒有客戶數據在binance或Kraken上被盜，因為他們能夠在發生之前停止違規行為。

To prevent the breaches, Binance had an automated machine learning system in place while Kraken had a team on call 24/7 to respond to any illegitimate activity. Both systems detected suspicious activity and were able to intervene quickly.

為了防止違規行為，Binance擁有一個自動化的機器學習系統，而Kraken則有一個全天候24/7的團隊來應對任何非法活動。兩個系統都檢測到可疑活動，並能夠快速乾預。

This is in stark contrast to the Coinbase event which shows that social engineering is a rapidly growing threat. As hackers are becoming more adept at tricking people, they are pivoting their tactics and focusing less on breaking into computer systems. This means that businesses must work harder to train their staff and install robust security systems.

這與Coinbase事件形成鮮明對比，後者表明社會工程是一個迅速增長的威脅。隨著黑客越來越擅長欺騙人們，他們正在旋轉自己的策略，而不再專注於闖入計算機系統。這意味著企業必須更加努力地培訓員工並安裝強大的安全系統。

The incident at Coinbase shows that people are still the weakest link when it comes to cybersecurity. It also highlights the need for companies to take extra care when working with external contractors in various parts of the world. If the proper controls are not in place, allowing external users to have access can create more avenues for risk.

Coinbase的事件表明，在網絡安全方面，人們仍然是最弱的聯繫。它還強調了公司在與世界各地的外部承包商合作時需要額外注意的需求。如果沒有適當的控件，則允許外部用戶獲得訪問可以創造更多風險途徑。

As the investigation by the DOJ continues, Coinbase may face increasing pressure to improve the security measures used to protect its platform.

隨著司法部的調查繼續進行，Coinbase可能面臨越來越多的壓力，以改善用於保護其平台的安全措施。

However, both Binance and Kraken are being praised for their response to the same challenges. Their positive results show that having a strong plan for security and the ability to act quickly is essential for a business to be able to recover from a serious incident.

但是，binance和Kraken都因對同樣挑戰的反應而受到讚揚。他們的積極結果表明，對安全和快速行動的能力製定強大的計劃對於企業能夠從嚴重事件中恢復的能力至關重要。