A big data breach at Coinbase has exposed the personal details of 70,000 customers and might cost the company up to $400 million. It all started in India, where someone working with Coinbase was paid to leak the data. Now, many people are asking if the KYC rules that are supposed to keep them safe are making things worse.
The breach, which happened in December 2024, was not caused by a direct hack of Coinbase’s systems. Instead, hackers bribed a customer service agent working for TaskUs in India to steal sensitive information belonging to about 70,000 Coinbase users.
This employee allegedly used her personal phone to take pictures of private data, while a suspected accomplice helped pass this information on to the hackers. The stolen data included government-issued IDs, home addresses, and other personal details.
In May 2025, Coinbase officially revealed the breach in an SEC filing and confirmed that employee data had also been accessed during the incident.
Perhaps, this shocking act turned the spotlight on how KYC and outsourced teams might be exposing crypto users to serious risks.
Eventually, KYC was introduced to stop money laundering and crime. But in real life, it’s the everyday crypto users who get exposed when there’s a breach. Illicit actors are even using fake IDs made with AI to get around these checks.
However, 404 Media reported that half of identity checks can now be bypassed with these AI tools. In one case in 2023, blockchain detective ZachXBT showed how easy it was to trick an exchange by pretending to be North Korean leader Kim Jong-Un!
Some people think zero-knowledge (ZK) technology could be the answer. It can let people prove their identity without sharing personal details.
But ZK tools are costly and hard to put in place, and experts believe that regulators are unlikely to relax KYC rules anytime soon.
As the fallout continues, users are urged to take extra steps to stay safe. Experts recommend turning on two-factor authentication and never sharing seed phrases or private info with anyone
CoinPedia has been delivering accurate and timely cryptocurrency and blockchain updates since 2017. All content is created by our expert panel of analysts and journalists, following strict Editorial Guidelines based on E-E-A-T (Experience, Expertise, Authoritativeness, Trustworthiness). Every article is fact-checked against reputable sources to ensure accuracy, transparency, and reliability. Our review policy guarantees unbiased evaluations when recommending exchanges, platforms, or tools. We strive to provide timely updates about everything crypto & blockchain, right from startups to industry majors.
All opinions and insights shared represent the author's own views on current market conditions. Please do your own research before making investment decisions. Neither the writer nor the publication assumes responsibility for your financial choices.
Sponsored content and affiliate links may appear on our site. Advertisements are marked clearly, and our editorial content remains entirely independent from our ad partners.
Poland is facing a heated political clash after President Karol Nawrocki refused to approve a…
The trading industry stands at a critical crossroads: challenged by issues of financial trust and…
Investors are on the hunt for the next 10x crypto as the market enters a…
Zcash (ZEC) price has spent the past week at the bottom of the performance rankings,…
Ethereum, one of the biggest blockchain networks, is gearing up for a major upgrade. On…
Grayscale Research says Bitcoin may hit new record highs in 2026 instead of following the…
