News View Non-AMP

Coinbase Data Breach Update: Hacker Moves $42.5M in Bitcoin to Ethereum

Published by
Qadir AK

The hacker behind the Coinbase data breach has mocked publicly blockchain sleuth ZachXBT while swapping $42.5 million in Bitcoin to Ethereum. The message “L bozo” was left on-chain, clearly mocking ZachXBT and other analysts tracking the movement. This unusual act of digital defiance unfolded just after Coinbase refused to meet a $20 million ransom demand. The incident shocked the crypto community and investors are fearing a bigger security breach however the industry is not bowing down to such incident and plans to fight back. 

Coinbase Refuses $20M Ransom Demand

Coinbase confirmed that the breach originated back in December when a support agent was bribed to hand over sensitive user data. Nearly 97,000 customer accounts were exposed, including government-issued IDs and email addresses. While no passwords or private keys were compromised, the attacker threatened to exploit the data for phishing or further manipulation.

Instead of yielding to pressure, Coinbase offered a $20 million bounty to find the hacker. Soon after, the attacker moved $42.5 million in BTC to ETH using Thorchain, and then sold 8,698 ETH for $22.1 million in DAI. The transfer was traced live by analysts, making more interesting.

$42.5 Million in Bitcoin Swapped to Ethereum

The aftermath is expected to be costly. Coinbase estimates the total financial impact may reach $400 million. Internal reviews have led to the firing of involved employees, and new countermeasures have been rolled out to curb insider threats. Meanwhile, the U.S. Department of Justice has launched a formal investigation into the breach.

This incident underscores the growing risks of social engineering attacks in the crypto sector and highlights the urgent need for tighter operational security at major exchanges.

FAQs

What happened to Coinbase?

Coinbase experienced a data breach where a bribed support agent exposed sensitive user data, leading to a hacker demanding a $20 million ransom which Coinbase refused, opting to offer a bounty instead.

What triggered the recent Coinbase data breach?

The breach stemmed from a bribed support agent who exposed sensitive user data, including government IDs and email addresses, affecting ~70,000 accounts.

Qadir AK

Qadir Ak is the founder of Coinpedia. He has over a decade of experience writing about technology and has been covering the blockchain and cryptocurrency space since 2010. He has also interviewed a few prominent experts within the cryptocurrency space.

Recent Posts

President Zelenskyy’s Suit Sparks $79 Million Fight on Polymarket

Ukrainian President Volodymyr Zelenskyy’s simple outfit has turned into a million-dollar debate on Polymarket, the…

July 4, 2025

26,000 New Bitcoin Millionaires in 2025, But Why Is Trump Losing Money?

More than 26,000 new Bitcoin millionaires were added in the first half of 2025. But…

July 4, 2025

Massive Whale Transfer Sparks Buzz as Bitcoin Eyes New ATH—Will BTC Break Records This Weekend?

The Bitcoin price is trading around $109,100, close to its recent peaks above $110,300, as…

July 4, 2025

Trump’s Big Beautiful Bill to Be Signed on July 4, Elon Musk and Biden Raise Alarms

President Donald Trump’s sweeping economic package, famously called the “Big Beautiful Bill,” has cleared the…

July 4, 2025

MetaPlanet to Launch Bitcoin-Backed Stock Offering 10% Yield in Japan

A Japanese-listed company, MetaPlanet, is preparing to launch Bitcoin-backed preferred stock. This new financial product…

July 4, 2025

Crypto Regulations in Italy 2025

Italy has established an organized framework for crypto regulations as part of the European Union…

July 4, 2025