Coinbase（NASDAQ：COIN）承诺在黑客访问每月交易用户的1％的个人数据后，将涵盖用户损失

上周，Coinbase（NASDAQ：COIN）向客户介绍了一种安全漏洞，罪犯从其每月交易用户中访问了大约1％的个人数据。

Last week, Coinbase (NASDAQ:COIN) informed customers about a security breach in which criminals accessed personal data from around 1% of its monthly transacting users. The popular cryptocurrency exchange estimates the hack could cost it between $180 million and $400 million, according to its May 14 SEC filing.

上周，Coinbase（NASDAQ：COIN）向客户通报了安全漏洞，犯罪分子从大约1％的每月交易用户访问了个人数据。根据5月14日的申请，流行的加密货币交易所估计，该黑客的货币可能在1.8亿至4亿美元之间。

The hackers bribed Coinbase employees in foreign countries to gain access to user information on its internal systems. They were able to siphon personal data from about 0.1% of Coinbase’s monthly transacting users—which comes out to roughly 97,000 users—before they were detected and their access was terminated. The hackers then demanded a $20 million ransom from Coinbase, which the company refused to pay. Instead, it offered the money as a reward for information that helped to catch the criminals.

黑客贿赂了国外的Coinbase员工，以获取有关其内部系统的用户信息。他们能够从Coinbase每月的每月交易用户中大约0.1％（大约97,000个用户）中删除他们的个人数据，然后被检测到他们的访问权限。然后，黑客要求公司拒绝支付的Coinbase票房2000万美元。取而代之的是，它提供了这笔钱来的奖励，以帮助抓获罪犯。

Coinbase promises to cover user losses

Coinbase承诺涵盖用户损失

Coinbase says it is contacting all affected users by email and will reimburse any losses. While the criminals didn’t access sensitive data such as passwords, 2FA, or cryptocurrency keys, they did get their hands on significant amounts of personal data. That includes names and addresses, as well as masked Social Security numbers and bank account details.

Coinbase表示，它正在通过电子邮件与所有受影响的用户联系，并将偿还任何损失。尽管犯罪分子无法访问敏感数据，例如密码，2FA或加密货币键，但他们确实获得了大量个人数据。其中包括姓名和地址，以及蒙版的社会保险号和银行帐户详细信息。

This gives the hackers enough information to mount targeted social engineering attacks. These can be sophisticated schemes in which criminals use your information to trick you into giving up security codes, logging on to fake sites, or transferring money. For example, they might pose as Coinbase representatives and tell customers to move crypto into a so-called “safe” account.

这为黑客提供了足够的信息来进行针对性的社会工程攻击。这些可以是复杂的方案，其中犯罪分子使用您的信息来欺骗您放弃安全代码，登录假网站或转移资金。例如，他们可能会作为Coinbase代表摆姿势，并告诉客户将加密货币转移到所谓的“安全”帐户中。

According to The Block, Coinbase had around 9.7 million monthly transacting users.

根据该街区的说法，Coinbase每月约970万人的交易用户。

Repaying losses is only part of the picture

偿还损失只是图片的一部分

Coinbase says it will be covering any customer losses that result from the hack. It is also planning to introduce stricter anti-fraud protections, further strengthen its security controls and open a new support hub in the U.S. It is also firing the employees who were involved in the incident.

Coinbase表示，它将涵盖骇客造成的任何客户损失。它还计划引入更严格的反欺诈保护，进一步加强其安全控制并在美国开设了一个新的支持中心，它也正在解雇参与事件的员工。

However, the attack raises questions about the safety of funds on crypto exchanges. To be clear, it’s not uncommon for banks to be hacked. In fact, it happened to Santander in Spain last year. Cyberattacks are, unfortunately, part of modern life.

但是，这次袭击提出了有关加密交易所资金安全性的问题。需要明确的是，银行被黑客入侵并不少见。实际上，去年西班牙的桑坦德发生了。不幸的是，网络攻击是现代生活的一部分。

Even so, banks generally have better security and more consumer protections. Coinbase is choosing to make clients whole, but it doesn't have to. In contrast, the Electronic Funds Transfer Act (also known as Regulation E) requires banks to reimburse customers for fraudulent transactions. And if a bank fails, FDIC insurance protects customer money. Similarly, most top brokerages will reimburse fraudulent losses, and SIPC protection kicks in if the brokerage collapses.

即便如此，银行通常具有更好的安全性和更多的消费者保护。 Coinbase选择使客户完整，但不必这样做。相比之下，《电子资金转移法》（也称为法规E）要求银行向客户偿还欺诈性交易。如果银行失败，FDIC保险将保护客户资金。同样，大多数顶级经纪公司都会偿还欺诈性损失，如果经纪人崩溃，SIPC的保护就会开始。

At a time when crypto is becoming more mainstream and the U.S. government is increasing scrutiny of institutions in its quest to prevent money laundering activities, news of this hack is particularly relevant. A new bill that would place tighter regulations on so-called "crypto futures" institutions is also being considered by Congress this year.

在加密货币越来越主流的时候，美国政府正在越来越多地审查机构以防止洗钱活动时，这种黑客的消息尤其重要。一项新法案将对今年国会也考虑了对所谓的“加密期货”机构的更严格的法规。

Put simply, assets on cryptocurrency exchanges are currently more at risk than those held in banks and brokerage accounts.

简而言之，与银行和经纪帐户中的资产相比，加密货币交易所的资产面临的风险更大。

Where to invest $1,000

在哪里投资1,000美元

The analysis team at Motley Fool discovered what they believe are the 10 best stocks to buy now… and we suggest you listen.

Motley Fool的分析团队发现了他们认为现在要购买的10种最佳股票……我们建议您听。

The investing service has a new performance peak, averaging a 975% return on its picks over 15 years. (The market’s average is 172% over the same period.)

投资服务具有新的绩效峰值，在15年内的选秀权平均收益率为975％。 （在同一时期，市场的平均水平为172％。）

If you had invested $1,000 in one of its best-performing picks, Netflix (NASDAQ:NFLX), on December 17, 2004, when it was included in a round-up of 10 stocks to buy now, your investment would be worth $642,582 today,* according to recent calculations.

根据最近的计算，如果您在2004年12月17日在其表现最佳的选秀权之一（Netflix（NASDAQ：NFLX）中投资了1,000美元，那时它将被包括在10个现在购买的10股股票中，那么您的投资今天价值642,582美元*。

If you’re looking for a way to get started in investing, or you’re looking for fresh ideas to add to your portfolio, then you’ll want to consider what the Motley Fool Stock Advisorhas to say.

如果您正在寻找一种开始投资的方法，或者您正在寻找添加到投资组合中的新想法，那么您需要考虑莫特利傻瓜股票顾问说什么。

Get started with Stock Advisor today.

立即从股票顾问开始。

See the 10 stocks now.

立即查看10个股票。

*Stock Advisor returns as of May 19, 2025and include the impact of announced stock splits and paid dividends. Members are advised to trades at their own discretion. Past performance is not a guarantee of future results. Please factor in the impact of taxes and any other relevant considerations in making your own investment decisions.

*截至2025年5月19日，股票顾问申报表包括宣布的股票分割和有偿股息的影响。建议会员自行决定进行交易。过去的表现并不是未来结果的保证。请考虑税收和任何其他相关考虑因素在做出自己的投资决策时。