黑客贿赂Coinbase员工以窃取客户数据

在向美国证券交易委员会（SEC）的网络安全事件报告中，Coinbase说，黑客贿赂了多名员工，分享有关客户帐户和内部Coinbase文档的信息。

Coinbase (NASDAQ:COIN) has disclosed a cyber attack in which hackers bribed exchange employees to gain access to customer data and internal documentation, according to a cybersecurity incident report to the U.S. Securities and Exchange Commission (SEC).

根据向美国证券交易委员会（SEC）的网络安全事件报告，Coinbase（NASDAQ：COIN）已披露了一场网络攻击，其中黑客贿赂交易员工以获取客户数据和内部文档。

The report says that the hackers were able to use the illegally obtained info to threaten the exchange with a no-good trade. According to Coinbase, the hackers planned to disclose the customer data and internal documentation unless they were paid $20 million in Bitcoin (BTC).

该报告说，黑客能够使用非法获得的信息以不好的交易来威胁交易所。根据Coinbase的说法，黑客计划披露客户数据和内部文档，除非他们在比特币（BTC）中获得了2000万美元的支付。

Coinbase says it will pay an estimated $180 million to $400 million in remediation costs and voluntary customer reimbursements. The exchange adds that it is still investigating the affected data, which it says may include:

Coinbase表示，估计将支付约1.8亿至4亿美元的补救成本和自愿客户报销。交易所补充说，它仍在研究受影响的数据，其中可能包括：

* Customer names, email addresses, phone numbers, physical addresses, and SSNs

*客户名称，电子邮件地址，电话号码，物理地址和SSN

* Internal documentation such as payroll information for less than 5,000 employees

*内部文​​档，例如少于5,000名员工的工资信息

* Bank routing numbers and account numbers for less than 1,000 employees

*少于1,000名员工的银行路由号码和帐号

* Taxpayer ID numbers for less than 5,000 employees

*少于5,000名员工的纳税人ID号

* Passport information for less than 150 employees

*少于150名员工的护照信息

* Employment authorization documents for less than 250 employees

*少于250名员工的就业授权文件

Coinbase says it is cooperating with law enforcement in the investigation and that the employees involved have been fired. It also says it will not pay the hackers’ ransom.

Coinbase表示，它正在与执法部门合作进行调查，并解雇了涉及的员工。它还说这不会支付黑客的赎金。

“We are disappointed that a small number of former employees betrayed the trust placed in them by engaging in unlawful conduct and cooperating with cyber criminals. These employees were located in a limited number of offshore customer support centers and were not involved in any core engineering, technology, or operational roles. We are grateful for the swift actions of our teams and cooperate fully with law enforcement in this ongoing investigation.

“我们感到失望的是，少数前雇员通过从事非法行为并与网络罪犯合作，出卖了对他们的信任。这些雇员的位置有限，有限的离岸客户支持中心，并且不参与任何核心工程，技术或运营角色。我们感谢我们团队的迅速行动，并与该团队的迅速采取的行动，并与该法律执行不断地进行，继续进行了执法。

We will not pay any ransom to the attackers. The attempt to extort money from Coinbase will not succeed.

我们不会向攻击者支付任何赎金。从Coinbase勒索金钱的尝试将不会成功。

Coinbase is focused on emerging stronger from this incident. We are taking several steps, including:

Coinbase的重点是从这一事件中更强大。我们正在采取几个步骤，包括：

• Completing a full accounting of the affected data and notifying affected individuals.

•完成对受影响数据的完整会计，并通知受影响的个人。

• Providing Point-of-Sale gift cards to all U.S. customers and rolling over any remaining crypto to customer accounts.

•向所有美国客户提供销售点的礼品卡，并滚动到客户帐户的所有剩余加密货币。

• Offering credit monitoring and identity theft protection to affected individuals.

•向受影响的个人提供信用监控和身份盗窃保护。

• Making voluntary contributions to relevant community organizations in each country where affected customers reside.

•为受影响客户居住的每个国家的相关社区组织做出自愿捐款。

We are committed to doing what is right for our customers and employees, and we will continue to work diligently to resolve this matter.”

我们致力于为客户和员工做正确的事情，我们将继续努力解决此问题。”

Coinbase's stock price has fallen over 4% since the news broke.

自新闻传出以来，Coinbase的股价下跌了4％以上。

In a video posted to the social media platform X, CEO Brian Armstrong says that Coinbase will pay back those affected, increase cyberattack defenses, and relocate certain overseas customer support operations. According to Armstrong, the bribed Coinbase employees were all “overseas support agents”. He adds that the firm is contacting all U.S.-based customers to offer them Point-of-Sale gift cards and will roll over any remaining crypto to customer accounts. He also says that the company will be providing credit monitoring and identity theft protection to those affected and making voluntary contributions to community organizations in each country where affected customers reside.

首席执行官布莱恩·阿姆斯特朗（Brian Armstrong）在发布到社交媒体平台X上的视频中说，Coinbase将偿还受影响的人，增加网络攻击防御，并搬迁某些海外客户支持操作。根据阿姆斯特朗的说法，贿赂的共同体员工都是“海外支持代理商”。他补充说，该公司正在与所有基于美国的客户联系，向他们提供销售点的礼品卡，并将滚动到客户帐户的所有剩余加密货币。他还说，该公司将为受影响的人提供信用监控和身份盗用保护，并为受影响客户居住的每个国家的社区组织做出自愿捐款。

"This was a coordinated effort by a group of hackers to steal data from Coinbase users and threaten to release it unless we paid them a ransom. To our knowledge, no core Coinbase employees were involved in this incident. Rather, the hackers were able to bribe a small number of offshore customer support employees to cooperate with them. These employees appear to have granted the hackers access to a limited amount of data, including names, email addresses, physical addresses, and in some cases SSNs for a small percentage of U.S. based Coinbase users. They also appear to have gained access to internal documentation such as payroll information for less than 5,000 employees, bank routing numbers and account numbers for less than 1,000 employees, and taxpayer ID numbers for less than 5,000 employees. In addition, the hackers were able to gain access to passport information for less than 150 employees and employment authorization documents for less than 250 employees. We are still investigating the full scope of the affected data. We are also aware that the hackers were able to access a limited amount of data relating to a small number of enterprise customers. We are working directly with those customers to disclose the nature of the affected data and provide them with remediation measures. We will not pay any ransom to the attackers. The attempt to extort money from Coinbase will not succeed.

"This was a coordinated effort by a group of hackers to steal data from Coinbase users and threaten to release it unless we paid them a ransom. To our knowledge, no core Coinbase employees were involved in this incident. Rather, the hackers were able to bribe a small number of offshore customer support employees to cooperate with them. These employees appear to have granted the hackers access to a limited amount of data, including names, email addresses, physical addresses, and in some cases SSN的一小部分基于我们的共同用户。受影响的数据。

We are focused on emerging stronger from this incident. We are taking several steps, including completing a full accounting of the affected data and notifying affected individuals. We will also be making a contribution to a relevant community organization in each country where affected customers reside. We are grateful for the swift actions of our teams and cooperate fully with law enforcement in this ongoing investigation.

我们专注于这一事件更加强大。我们正在采取几个步骤，包括完成对受影响数据的完整会计以及通知受影响的个人。我们还将为受影响客户居住的每个国家的相关社区组织做出贡献。我们感谢团队的迅速行动，并在这项正在进行的调查中与执法部门充分合作。

Coinbase is a leading platform that provides secure and trusted cryptocurrency trading and custody services. The company is committed to doing what is right for its

Coinbase是一个领先的平台，可提供安全且值得信赖的加密货币交易和监护权服务。该公司致力于做适合自己的事情