Coinbase（NASDAQ：COIN）承諾在黑客訪問每月交易用戶的1％的個人數據後，將涵蓋用戶損失

上週，Coinbase（NASDAQ：COIN）向客戶介紹了一種安全漏洞，罪犯從其每月交易用戶中訪問了大約1％的個人數據。

Last week, Coinbase (NASDAQ:COIN) informed customers about a security breach in which criminals accessed personal data from around 1% of its monthly transacting users. The popular cryptocurrency exchange estimates the hack could cost it between $180 million and $400 million, according to its May 14 SEC filing.

上週，Coinbase（NASDAQ：COIN）向客戶通報了安全漏洞，犯罪分子從大約1％的每月交易用戶訪問了個人數據。根據5月14日的申請，流行的加密貨幣交易所估計，該黑客的貨幣可能在1.8億至4億美元之間。

The hackers bribed Coinbase employees in foreign countries to gain access to user information on its internal systems. They were able to siphon personal data from about 0.1% of Coinbase’s monthly transacting users—which comes out to roughly 97,000 users—before they were detected and their access was terminated. The hackers then demanded a $20 million ransom from Coinbase, which the company refused to pay. Instead, it offered the money as a reward for information that helped to catch the criminals.

黑客賄賂了國外的Coinbase員工，以獲取有關其內部系統的用戶信息。他們能夠從Coinbase每月的每月交易用戶中大約0.1％（大約97,000個用戶）中刪除他們的個人數據，然後被檢測到他們的訪問權限。然後，黑客要求公司拒絕支付的Coinbase票房2000萬美元。取而代之的是，它提供了這筆錢來的獎勵，以幫助抓獲罪犯。

Coinbase promises to cover user losses

Coinbase承諾涵蓋用戶損失

Coinbase says it is contacting all affected users by email and will reimburse any losses. While the criminals didn’t access sensitive data such as passwords, 2FA, or cryptocurrency keys, they did get their hands on significant amounts of personal data. That includes names and addresses, as well as masked Social Security numbers and bank account details.

Coinbase表示，它正在通過電子郵件與所有受影響的用戶聯繫，並將償還任何損失。儘管犯罪分子無法訪問敏感數據，例如密碼，2FA或加密貨幣鍵，但他們確實獲得了大量個人數據。其中包括姓名和地址，以及蒙版的社會保險號和銀行帳戶詳細信息。

This gives the hackers enough information to mount targeted social engineering attacks. These can be sophisticated schemes in which criminals use your information to trick you into giving up security codes, logging on to fake sites, or transferring money. For example, they might pose as Coinbase representatives and tell customers to move crypto into a so-called “safe” account.

這為黑客提供了足夠的信息來進行針對性的社會工程攻擊。這些可以是複雜的方案，其中犯罪分子使用您的信息來欺騙您放棄安全代碼，登錄假網站或轉移資金。例如，他們可能會作為Coinbase代表擺姿勢，並告訴客戶將加密貨幣轉移到所謂的“安全”帳戶中。

According to The Block, Coinbase had around 9.7 million monthly transacting users.

根據該街區的說法，Coinbase每月約970萬人的交易用戶。

Repaying losses is only part of the picture

償還損失只是圖片的一部分

Coinbase says it will be covering any customer losses that result from the hack. It is also planning to introduce stricter anti-fraud protections, further strengthen its security controls and open a new support hub in the U.S. It is also firing the employees who were involved in the incident.

Coinbase表示，它將涵蓋駭客造成的任何客戶損失。它還計劃引入更嚴格的反欺詐保護，進一步加強其安全控制並在美國開設了一個新的支持中心，它也正在解僱參與事件的員工。

However, the attack raises questions about the safety of funds on crypto exchanges. To be clear, it’s not uncommon for banks to be hacked. In fact, it happened to Santander in Spain last year. Cyberattacks are, unfortunately, part of modern life.

但是，這次襲擊提出了有關加密交易所資金安全性的問題。需要明確的是，銀行被黑客入侵並不少見。實際上，去年西班牙的桑坦德發生了。不幸的是，網絡攻擊是現代生活的一部分。

Even so, banks generally have better security and more consumer protections. Coinbase is choosing to make clients whole, but it doesn't have to. In contrast, the Electronic Funds Transfer Act (also known as Regulation E) requires banks to reimburse customers for fraudulent transactions. And if a bank fails, FDIC insurance protects customer money. Similarly, most top brokerages will reimburse fraudulent losses, and SIPC protection kicks in if the brokerage collapses.

即便如此，銀行通常具有更好的安全性和更多的消費者保護。 Coinbase選擇使客戶完整，但不必這樣做。相比之下，《電子資金轉移法》（也稱為法規E）要求銀行向客戶償還欺詐性交易。如果銀行失敗，FDIC保險將保護客戶資金。同樣，大多數頂級經紀公司都會償還欺詐性損失，如果經紀人崩潰，SIPC的保護就會開始。

At a time when crypto is becoming more mainstream and the U.S. government is increasing scrutiny of institutions in its quest to prevent money laundering activities, news of this hack is particularly relevant. A new bill that would place tighter regulations on so-called "crypto futures" institutions is also being considered by Congress this year.

在加密貨幣越來越主流的時候，美國政府正在越來越多地審查機構以防止洗錢活動時，這種黑客的消息尤其重要。一項新法案將對今年國會也考慮了對所謂的“加密期貨”機構的更嚴格的法規。

Put simply, assets on cryptocurrency exchanges are currently more at risk than those held in banks and brokerage accounts.

簡而言之，與銀行和經紀帳戶中的資產相比，加密貨幣交易所的資產面臨的風險更大。

Where to invest $1,000

在哪裡投資1,000美元

The analysis team at Motley Fool discovered what they believe are the 10 best stocks to buy now… and we suggest you listen.

Motley Fool的分析團隊發現了他們認為現在要購買的10種最佳股票……我們建議您聽。

The investing service has a new performance peak, averaging a 975% return on its picks over 15 years. (The market’s average is 172% over the same period.)

投資服務具有新的績效峰值，在15年內的選秀權平均收益率為975％。 （在同一時期，市場的平均水平為172％。）

If you had invested $1,000 in one of its best-performing picks, Netflix (NASDAQ:NFLX), on December 17, 2004, when it was included in a round-up of 10 stocks to buy now, your investment would be worth $642,582 today,* according to recent calculations.

根據最近的計算，如果您在2004年12月17日在其表現最佳的選秀權之一（Netflix（NASDAQ：NFLX）中投資了1,000美元，那時它將被包括在10個現在購買的10股股票中，那麼您的投資今天價值642,582美元*。

If you’re looking for a way to get started in investing, or you’re looking for fresh ideas to add to your portfolio, then you’ll want to consider what the Motley Fool Stock Advisorhas to say.

如果您正在尋找一種開始投資的方法，或者您正在尋找添加到投資組合中的新想法，那麼您需要考慮莫特利傻瓜股票顧問說什麼。

Get started with Stock Advisor today.

立即從股票顧問開始。

See the 10 stocks now.

立即查看10個股票。

*Stock Advisor returns as of May 19, 2025and include the impact of announced stock splits and paid dividends. Members are advised to trades at their own discretion. Past performance is not a guarantee of future results. Please factor in the impact of taxes and any other relevant considerations in making your own investment decisions.

*截至2025年5月19日，股票顧問申報表包括宣布的股票分割和有償股息的影響。建議會員自行決定進行交易。過去的表現並不是未來結果的保證。請考慮稅收和任何其他相關考慮因素在做出自己的投資決策時。