Coinbase（NASDAQ：COIN）拒绝支付2000万美元的比特币勒索勒姆（Bit Coin Ransom）已有裸露的系统脆弱性

Coinbase（NASDAQ：COIN）拒绝支付2000万美元的比特币赎金，这使系统脆弱性依赖于海外承包商

Coinbase (NASDAQ:) encountered a sophisticated cybercrime operation in which criminals bribed customer support agents to provide sensitive data on 6,000 users, part of a broader years-long pattern of social engineering scams that have drained hundreds of millions of dollars from the exchange’s customers, multiple sources told Protos.

Coinbase（NASDAQ :)遇到了一个复杂的网络犯罪行动，其中犯罪分子贿赂客户支持代理商，向6,000名用户提供敏感数据，这是多年来的社会工程骗局的一部分，这些骗局已从交易所的客户那里耗尽了数亿美元，这些骗局耗尽了数亿美元。

The criminals then used the stolen government IDs, Social Security numbers, and bank details to carry out phishing scams on users, aiming to steal their crypto. Less than 1% of Coinbase’s monthly users were affected by the breach, which began in early 2022.

然后，罪犯使用被盗的政府ID，社会保险号和银行的详细信息来对用户进行网络钓鱼骗局，以窃取其加密货币。 Coinbase的每月用户中只有不到1％受到2022年初开始的违规影响。

After discovering the breach, and the potential private key theft, Coinbase was subject to a $20 million extortion attempt to cover up the incident, according to internal communications seen by Protos. But despite the size of the sum, and the potential legal and reputational fallout, Coinbase refused to pay.

根据Protos的内部通信，发现违规行为和潜在的私钥盗窃案后，Coinbase遭受了2000万美元的勒索尝试来掩盖这一事件。但是，尽管这笔款项的规模以及潜在的法律和声誉后果，但Coinbase拒绝付款。

Instead, Coinbase offered a $20 million bounty for information leading to arrests, a symbolic gesture that did little to quell investor unease, with COIN shares slipping 5% in premarket trading on Monday.

取而代之的是，Coinbase提供了一笔2000万美元的赏金，以提供导致逮捕的信息，这一象征性的姿态对平息投资者的不安几乎无济于事，周一，硬币股票在上市交易中下跌了5％。

Coinbase also disclosed potential costs of $180 million to $400 million for reimbursing scammed customers and covering legal expenses, part of a broader $300 million to $400 million range of costs related to the incident, according to a company spokesperson.

据公司发言人称，Coinbase还披露了报销骗子的客户并涵盖法律支出的潜在费用为1.8亿至4亿美元，这是与此事件相关的3亿至4亿美元范围的一部分。

Coinbase said the incident never involved exposure of private keys, login credentials, account or wallet access, or any means for the criminals to move customer funds themselves.

Coinbase表示，该事件从未涉及私钥，登录凭证，帐户或钱包的访问或罪犯自行移动客户资金的任何手段。

However, this incident is not an outlier but a symptom of Coinbase’s chronic security gaps and its reliance on overseas contractors for cost-cutting.

但是，这一事件不是异常值，而是Coinbase的长期安全差距及其依赖海外承包商降低成本的症状。

According to blockchain investigator ZachXBT, who has been tracking the scams since last year, Coinbase is losing around $300 million annually to social engineering scams, far more than rivals like Binance and Kraken.

自去年以来一直在追踪骗局的区块链调查员Zachxbt表示，Coinbase每年损失约3亿美元的社会工程骗局，远远超过了Binance和Kraken等竞争对手。

In May alone, ZachXBT documented how $45 million was stolen through fraudulent recovery services impersonating Coinbase support, an enterprise-level scam that was enabled by lax third-party vetting.

仅在5月，Zachxbt记录了如何通过欺诈性的恢复服务来盗窃4500万美元，该服务冒充Coinbase Support，这是一种由LAX第三方审查来实现的企业级骗局。

Coinbase did not respond to a request for comment.

Coinbase没有回应置评请求。

According to internal documents and conversations with former employees, who spoke on condition of anonymity due to nondisclosure agreements, the bribery began with a small number of customer support agents at an offshore contractor, exploiting minimal training and supervision.

根据内部文件和与前雇员的对话，他们在不公开协议的情况下进行了匿名性，贿赂始于离岸承包商的少数客户支持代理商，利用了最小的培训和监督。

“These support teams are often outsourced to India and the Philippines, where the focus is on handling high volumes of tickets quickly and efficiently, and the level of training and supervision can be minimal,” said a former compliance officer at a major crypto firm, who asked not to be named.

“这些支持团队通常被外包给印度和菲律宾，在这里，重点是快速有效地处理大量门票，培训和监督的水平可能很小，”一家主要加密货币公司的一名前合规官说，他要求不要命名。

“In such a setting, it’s easier for bad actors to slip through the cracks and exploit any vulnerabilities they find.”

“在这种情况下，坏演员更容易在裂缝中滑倒并利用他们发现的任何漏洞。”

Beginning with low-level employees accepting bribes as small as a few thousand dollars, the criminals gradually gained access to more sensitive data and higher-level employees.

从低级员工接受贿赂至几千美元的贿赂开始，罪犯逐渐获得了更敏感的数据和更高级别的员工的访问权。

Finally, they reached a department head, who had access to a database with details on 6,000 users, part of less than 1% of Coinbase’s monthly users at the time.

最后，他们到达了一个部门负责人，他可以访问一个数据库，其中有6,000名用户的详细信息，这是当时Coinbase每月用户不到1％的一部分。

To extort the exchange, the criminals planned to use the stolen data to create highly convincing phishing scams, impersonating Coinbase and aiming to steal remaining user funds.

为了勒索交易所，犯罪分子计划使用被盗的数据来创建高度令人信服的网络钓鱼骗局，模仿Coinbase并旨在窃取剩余的用户资金。

After learning of the breach, Coinbase cooperated fully with authorities to conduct an investigation and identify the individuals involved in the scam.

得知违规行为后，Coinbase与当局完全合作，进行调查并确定涉及骗局的人。

The investigation, which is still ongoing, has led to the arrest of several individuals in different countries.

该调查仍在进行中，导致在不同国家逮捕了几个人。

Coinbase is also continuing to notify affected users and offer them support.

Coinbase还继续通知受影响的用户并为他们提供支持。

In a statement, a Coinbase spokesperson said: “We have zero tolerance for any unlawful activity and are actively cooperating with authorities to pursue the harshest penalties possible against those involved in this incident.”

一位Coinbase发言人在一份声明中说：“我们对任何非法活动的容忍度为零，并且正在与当局积极合作，以对这一事件涉及的人采取最严厉的惩罚。”

The spokesperson added that Coinbase is committed to maintaining the security of its platform and protecting the assets of its users.

发言人补充说，Coinbase致力于维护其平台的安全性并保护其用户的资产。

“We take this responsibility very seriously and are constantly investing in new technologies and procedures to stay ahead of evolving threats,” the spokesperson said.

发言人说：“我们非常重视这一责任，并不断投资于新技术和程序，以保持不断发展的威胁。”

Coinbase’s growth-at-all-costs model, evident in its rapid expansion into new markets and services, has been a key focus for investors.

Coinbase的全成本模型在快速扩展到新市场和服务方面显而易见，一直是投资者的重点。

However, some critics argue that this focus on growth has come at the expense of security, as the company struggled to keep pace with the increasing sophistication of cybercriminals.

但是，一些批评家认为，这种对增长的关注是以牺牲安全为代价的，因为该公司努力与网络犯罪分子的成熟程度保持同步。

“Coinbase is a big target for scammers, and they’ve been hit hard by a variety of scams over the years,” said Taylor Monahan, a security researcher who has written extensively on crypto scams.

安全研究人员泰勒·莫纳汉（Taylor Monahan）说：“ Coinbase是诈骗者的主要目标，而且多年来都被各种骗局击中。”

“The company has certainly been working to improve its security, but it’s an ongoing battle.”

“该公司当然一直在努力提高其安全性，但这是一场持续的战斗。”

Monahan said that the average weekend takeover of a crypto exchange now yields around $50 million in stolen user funds, showcasing the large-scale nature of the scams.

莫纳汉（Monahan）说，平均周末收购加密货币交易所（Crypto Exchange）现在产生了约5000万美元的被盗用户资金，展示了骗局的大规模性质。

She also slammed Coinbase’s new in-wallet messaging feature as a “direct, encrypted line for scammers

她还抨击了Coinbase的新内壁消息传递功能，作为“直接，加密的骗子线