Coinbase披露了针对性的网络攻击，涉及贿赂海外承包商，导致数据泄露

Coinbase透露了一个有针对性的网络攻击，涉及贿赂海外承包商，导致大量数据泄露，影响其每月活跃用户的1％。

Coinbase has disclosed a major data breach that impacted less than 1% of its monthly active users. The breach was caused by a targeted cyberattack that involved a group of overseas contractors who were bribed by attackers to grant them access to internal tools.

Coinbase透露了一个重大数据泄露，该数据违反了其每月活跃用户的不到1％。违规行为是由有针对性的网络攻击引起的，该网络攻击涉及一群海外承包商，他们被攻击者贿赂以允许他们使用内部工具。

The attackers managed to extract some customer data, including partial bank information, addresses, phone numbers, and masked Social Security digits. However, no funds, passwords, private keys, or Coinbase Prime accounts used by institutions were affected.

攻击者设法提取了一些客户数据，包括部分银行信息，地址，电话号码和掩盖的社会保障数字。但是，没有影响机构使用的资金，密码，私钥或Coinbase Prime帐户。

According to a report by Blockworks, the incident began with a group of contractors working for a company that provides services to Coinbase in a foreign country being targeted by the attackers.

根据Blockworks的一份报告，该事件始于一组为一家公司工作的承包商，该公司在攻击者针对的外国为Coinbase提供服务。

The attackers, who were described as experienced in social engineering, managed to befriend the contractors online over the course of several months and eventually bribed them to grant them remote access to internal tools used by Coinbase.

被描述为社会工程经验的攻击者在几个月的过程中设法在线与承包商成为朋友，并最终贿赂他们，使他们远程访问Coinbase使用的内部工具。

Once they gained access, the attackers extracted a data dump that included names, email addresses, phone numbers, city and state of residence, last four digits of bank account numbers, and the first five digits of Social Security numbers in a masked format. The aim was to use this information to impersonate Coinbase and extract additional assets from users through phishing scams.

一旦获得访问权限，攻击者就提取了一个数据转储，其中包括名称，电子邮件地址，电话号码，城市和居住状态，银行帐号的最后四位数字以及以掩盖格式的前五位社会安全号码。目的是使用这些信息来模仿Coinbase并通过网络钓鱼骗局从用户中提取其他资产。

Coinbase said it discovered the breach and took steps to shut it down. It is now offering a reward of up to $20 million for information leading to the arrest and conviction of the attackers.

Coinbase说，它发现了违规行为，并采取了措施将其关闭。现在，它提供了多达2000万美元的奖励，以获取导致袭击者被捕和定罪的信息。

The company is also working with blockchain analytics firms to identify addresses on blockchains that are being used by the attackers, and is engaging with crypto exchanges to freeze any stolen assets and monitor the flow of funds. It has also notified relevant authorities in the US and other countries about the breach and is cooperating with their investigations.

该公司还与区块链分析公司合作，以确定攻击者正在使用的区块链的地址，并正在与加密交易所进行互动以冷冻任何被盗资产并监视资金流动。它还通知了美国和其他国家的相关当局有关违规行为，并正在与他们的调查合作。

Coinbase is taking several steps to prevent future attacks and mitigate the risks arising from this incident. These steps include:

Coinbase正在采取几个步骤来防止未来的攻击，并减轻这一事件引起的风险。这些步骤包括：

* Implementing additional ID verification procedures for all customers making withdrawals above a certain amount.

*为所有提款超过一定金额的所有客户实施其他ID验证程序。

* Launching a new customer support hub in the US to reduce reliance on third-party contractors.

*在美国推出新的客户支持中心，以减少对第三方承包商的依赖。

* Introducing new protections for users, such as real-time scam alerts and enhanced monitoring of accounts that are flagged as high risk.

*针对用户引入新的保护措施，例如实时骗局警报以及对被标记为高风险的帐户的增强监控。

It is also deploying new internal programs to detect insider threats and will be running continuous red-team testing to identify vulnerabilities in its systems.

它还正在部署新的内部程序来检测内部人士威胁，并将运行连续的红线测试以识别其系统中的漏洞。

Coinbase said it is committed to doing everything it can to help the customers who were impacted by this breach. It will be reaching out to these customers directly and will provide them with regular updates on the company's progress in remedying the situation.

Coinbase表示，它致力于竭尽所能，以帮助受到这种违规影响的客户。它将直接与这些客户联系，并将为他们提供有关公司在纠正情况方面的进度的定期更新。

The company is also prepared to take further action to protect its customers, such as applying for coverage under relevant US federal programs to help provide complete restitution to customers who may be defrauded by the attackers in follow-up scams.

该公司还准备采取进一步的行动来保护其客户，例如在相关的美国联邦计划下申请承保范围，以帮助向可能被攻击者欺骗的客户提供全面恢复原状。

This incident comes at a crucial moment for Coinbase, which is on the verge of becoming the first crypto-native company to be included in the S&P 500 index.

对于Coinbase的关键时刻，这一事件即将成为第一家被纳入标准普尔500指数中的加密本地公司。

The inclusion, which is expected to take place on Monday, will place a strong spotlight on the exchange’s performance and operations.

预计将在周一举行的包容性将对交易所的表现和运营引起强烈关注。

With analysts estimating the total cost of the data breach to be in the range of $180 million to $400 million, the focus will likely turn to the exchange’s security infrastructure and operational resilience in handling such incidents.

分析师估计数据泄露的总成本在1.8亿至4亿美元之间，重点可能会转向交易所的安全基础架构和运营弹性，以处理此类事件。

Coinbase said it is currently completing a full assessment of the financial losses, legal claims, and potential recoveries arising from the breach. The company will disclose the full extent of the impact in its upcoming financial statements.

Coinbase表示，目前正在完成对财务损失，法律索赔以及因违约带来的潜在回收率的全面评估。该公司将在即将到来的财务报表中披露影响的全部范围。