Coinbase承诺$ 2000万赏金捕获比特币BTC/USD勒索软件攻击者

Coinbase周四披露了一个涉及内部滥用和数据盗窃的物质网络安全事件，导致了2000万美元的比特币BTC/USD赎金需求

Coinbase (NASDAQ:COIN) on Thursday disclosed a material cybersecurity incident involving insider abuse and data theft, leading to a $20 million Bitcoin (BTC/USD) ransom demand from a threat actor, which the company has refused to pay.

Coinbase（NASDAQ：COIN）周四透露了一项涉及内部滥用和数据盗窃案的物质网络安全事件，导致威胁参与者的2000万美元比特币（BTC/USD）赎金需求，该公司拒绝支付。

Instead, Coinbase is placing a $20 million bounty for information leading to the arrest and conviction of the perpetrators.

取而代之的是，Coinbase为信息提供了一笔2000万美元的赏金，以导致犯罪者被捕和定罪。

What Happened: Attackers were able to bribe overseas support contractors to exfiltrate internal documentation and personal user data, including names, contact details, masked bank and S.S.N data and government I.D.s, the company disclosed in a Form 8-K filing with the U.S. Securities and Exchange Commission on Monday.

发生了什么：攻击者能够贿赂海外支持承包商，以剥夺内部文件和个人用户数据，包括姓名，联系方式，蒙面银行和SSN数据和政府ID，并于周一向美国证券交易委员会提交的表格8-K申请。

The breach affected less than 1% of monthly transacting users, according to the company.

据该公司称，违规行为不到每月交易用户的1％。

"We are not going to pay your ransom … Instead, we're putting out a $20 million award for any information leading to the arrest and conviction of these attackers," Coinbase CEO Brian Armstrong said in a blog post.

Coinbase首席执行官布莱恩·阿姆斯特朗（Brian Armstrong）在博客文章中说：“我们不会支付您的赎金……相反，我们为导致这些攻击者逮捕和定罪的任何信息颁发了2000万美元的奖励。”

The CEO said the attackers went after weak links by targeting third-party customer support agents in foreign countries. While no passwords, private keys or funds were accessed, Armstrong noted the real threat of social engineering attempts using the leaked personal data.

首席执行官说，攻击者通过针对国外的第三方客户支持代理商来追求薄弱的联系。尽管未访问密码，私钥或资金，但阿姆斯特朗指出，使用泄漏的个人数据造成了社会工程尝试的真正威胁。

"They were able to find a few bad apples … this is still unacceptable," Armstrong said.

阿姆斯特朗说：“他们能够找到一些坏苹果……这仍然是不可接受的。”

Some of the compromised contractors had previously been flagged and terminated by Coinbase’s security systems.

一些妥协的承包商以前曾被Coinbase的安全系统标记并终止。

The company began receiving emails from the threat actor demanding a ransom of 50 Bitcoin (around $20 million) in return for decrypting data and halting further intrusions. The first email was received on May 11, and the company has been working with law enforcement.

该公司开始收到威胁参与者的电子邮件，要求赎金为50比特币（约2000万美元），以换取解密数据并停止进一步的入侵。第一封电子邮件于5月11日收到，该公司一直在与执法部门合作。

The affected customers were notified, and Coinbase will reimburse any user who lost funds as a direct result of the breach, Armstrong confirmed.

阿姆斯特朗证实，受影响的客户已收到通知，Coinbase将偿还任何损失资金的用户。

Additional measures include relocating parts of the customer support operation to the U.S. and tightening internal access controls.

其他措施包括将客户支持操作的一部分转移到美国并收紧内部访问控件。

The company has not experienced any material operational disruption but said it expects to incur expenses of $180 million to $400 million related to remediation and reimbursements.

该公司尚未遭受任何实质性操作中断，但表示预计会产生与补救和报销有关的1.8亿至4亿美元的费用。

See More: Best Cryptocurrency Scanners

查看更多：最佳加密货币扫描仪