黑客賄賂Coinbase員工以竊取客戶數據

在向美國證券交易委員會（SEC）的網絡安全事件報告中，Coinbase說，黑客賄賂了多名員工，分享有關客戶帳戶和內部Coinbase文檔的信息。

Coinbase (NASDAQ:COIN) has disclosed a cyber attack in which hackers bribed exchange employees to gain access to customer data and internal documentation, according to a cybersecurity incident report to the U.S. Securities and Exchange Commission (SEC).

根據向美國證券交易委員會（SEC）的網絡安全事件報告，Coinbase（NASDAQ：COIN）已披露了一場網絡攻擊，其中黑客賄賂交易員工以獲取客戶數據和內部文檔。

The report says that the hackers were able to use the illegally obtained info to threaten the exchange with a no-good trade. According to Coinbase, the hackers planned to disclose the customer data and internal documentation unless they were paid $20 million in Bitcoin (BTC).

該報告說，黑客能夠使用非法獲得的信息以不好的交易來威脅交易所。根據Coinbase的說法，黑客計劃披露客戶數據和內部文檔，除非他們在比特幣（BTC）中獲得了2000萬美元的支付。

Coinbase says it will pay an estimated $180 million to $400 million in remediation costs and voluntary customer reimbursements. The exchange adds that it is still investigating the affected data, which it says may include:

Coinbase表示，估計將支付約1.8億至4億美元的補救成本和自願客戶報銷。交易所補充說，它仍在研究受影響的數據，其中可能包括：

* Customer names, email addresses, phone numbers, physical addresses, and SSNs

*客戶名稱，電子郵件地址，電話號碼，物理地址和SSN

* Internal documentation such as payroll information for less than 5,000 employees

*內部文​​檔，例如少於5,000名員工的工資信息

* Bank routing numbers and account numbers for less than 1,000 employees

*少於1,000名員工的銀行路由號碼和帳號

* Taxpayer ID numbers for less than 5,000 employees

*少於5,000名員工的納稅人ID號

* Passport information for less than 150 employees

*少於150名員工的護照信息

* Employment authorization documents for less than 250 employees

*少於250名員工的就業授權文件

Coinbase says it is cooperating with law enforcement in the investigation and that the employees involved have been fired. It also says it will not pay the hackers’ ransom.

Coinbase表示，它正在與執法部門合作進行調查，並解雇了涉及的員工。它還說這不會支付黑客的贖金。

“We are disappointed that a small number of former employees betrayed the trust placed in them by engaging in unlawful conduct and cooperating with cyber criminals. These employees were located in a limited number of offshore customer support centers and were not involved in any core engineering, technology, or operational roles. We are grateful for the swift actions of our teams and cooperate fully with law enforcement in this ongoing investigation.

“我們感到失望的是，少數前僱員通過從事非法行為並與網絡罪犯合作，出賣了對他們的信任。這些僱員的位置有限，有限的離岸客戶支持中心，並且不參與任何核心工程，技術或運營角色。我們感謝我們團隊的迅速行動，並與該團隊的迅速採取的行動，並與該法律執行不斷地進行，繼續進行了執法。

We will not pay any ransom to the attackers. The attempt to extort money from Coinbase will not succeed.

我們不會向攻擊者支付任何贖金。從Coinbase勒索金錢的嘗試將不會成功。

Coinbase is focused on emerging stronger from this incident. We are taking several steps, including:

Coinbase的重點是從這一事件中更強大。我們正在採取幾個步驟，包括：

• Completing a full accounting of the affected data and notifying affected individuals.

•完成對受影響數據的完整會計，並通知受影響的個人。

• Providing Point-of-Sale gift cards to all U.S. customers and rolling over any remaining crypto to customer accounts.

•向所有美國客戶提供銷售點的禮品卡，並滾動到客戶帳戶的所有剩餘加密貨幣。

• Offering credit monitoring and identity theft protection to affected individuals.

•向受影響的個人提供信用監控和身份盜竊保護。

• Making voluntary contributions to relevant community organizations in each country where affected customers reside.

•為受影響客戶居住的每個國家的相關社區組織做出自願捐款。

We are committed to doing what is right for our customers and employees, and we will continue to work diligently to resolve this matter.”

我們致力於為客戶和員工做正確的事情，我們將繼續努力解決此問題。 ”

Coinbase's stock price has fallen over 4% since the news broke.

自新聞傳出以來，Coinbase的股價下跌了4％以上。

In a video posted to the social media platform X, CEO Brian Armstrong says that Coinbase will pay back those affected, increase cyberattack defenses, and relocate certain overseas customer support operations. According to Armstrong, the bribed Coinbase employees were all “overseas support agents”. He adds that the firm is contacting all U.S.-based customers to offer them Point-of-Sale gift cards and will roll over any remaining crypto to customer accounts. He also says that the company will be providing credit monitoring and identity theft protection to those affected and making voluntary contributions to community organizations in each country where affected customers reside.

首席執行官布萊恩·阿姆斯特朗（Brian Armstrong）在發佈到社交媒體平台X上的視頻中說，Coinbase將償還受影響的人，增加網絡攻擊防禦，並搬遷某些海外客戶支持操作。根據阿姆斯特朗的說法，賄賂的共同體員工都是“海外支持代理商”。他補充說，該公司正在與所有基於美國的客戶聯繫，向他們提供銷售點的禮品卡，並將滾動到客戶帳戶的所有剩餘加密貨幣。他還說，該公司將為受影響的人提供信用監控和身份盜用保護，並為受影響客戶居住的每個國家的社區組織做出自願捐款。

"This was a coordinated effort by a group of hackers to steal data from Coinbase users and threaten to release it unless we paid them a ransom. To our knowledge, no core Coinbase employees were involved in this incident. Rather, the hackers were able to bribe a small number of offshore customer support employees to cooperate with them. These employees appear to have granted the hackers access to a limited amount of data, including names, email addresses, physical addresses, and in some cases SSNs for a small percentage of U.S. based Coinbase users. They also appear to have gained access to internal documentation such as payroll information for less than 5,000 employees, bank routing numbers and account numbers for less than 1,000 employees, and taxpayer ID numbers for less than 5,000 employees. In addition, the hackers were able to gain access to passport information for less than 150 employees and employment authorization documents for less than 250 employees. We are still investigating the full scope of the affected data. We are also aware that the hackers were able to access a limited amount of data relating to a small number of enterprise customers. We are working directly with those customers to disclose the nature of the affected data and provide them with remediation measures. We will not pay any ransom to the attackers. The attempt to extort money from Coinbase will not succeed.

"This was a coordinated effort by a group of hackers to steal data from Coinbase users and threaten to release it unless we paid them a ransom. To our knowledge, no core Coinbase employees were involved in this incident. Rather, the hackers were able to bribe a small number of offshore customer support employees to cooperate with them. These employees appear to have granted the hackers access to a limited amount of data, including names, email addresses, physical addresses, and in some cases SSN的一小部分基於我們的共同用戶。受影響的數據。

We are focused on emerging stronger from this incident. We are taking several steps, including completing a full accounting of the affected data and notifying affected individuals. We will also be making a contribution to a relevant community organization in each country where affected customers reside. We are grateful for the swift actions of our teams and cooperate fully with law enforcement in this ongoing investigation.

我們專注於這一事件更加強大。我們正在採取幾個步驟，包括完成對受影響數據的完整會計以及通知受影響的個人。我們還將為受影響客戶居住的每個國家的相關社區組織做出貢獻。我們感謝團隊的迅速行動，並在這項正在進行的調查中與執法部門充分合作。

Coinbase is a leading platform that provides secure and trusted cryptocurrency trading and custody services. The company is committed to doing what is right for its

Coinbase是一個領先的平台，可提供安全且值得信賴的加密貨幣交易和監護權服務。該公司致力於做適合自己的事情