←back to thread

Coinbase says hackers bribed staff to steal customer data, demanding $20M ransom

(www.cnbc.com)
410 points gpi | 1 comments | 15 May 25 15:52 UTC | HN request time: 0.206s | source
Show context
neilv ◴[15 May 25 16:07 UTC] No.43996445[source]
The article keeps saying overseas employees or contractors, but isn't more specific on who Coinbase entrusted with this sensitive customer PII.

The bottom line is Coinbase didn't adequately secure sensitive customer information, and it was leaked.

Not, "Gosh, 'overseas' people, what can ya do?"

replies(12): >>43996466 #>>43996524 #>>43996557 #>>43996649 #>>43996661 #>>43996746 #>>43997312 #>>43997316 #>>43997530 #>>43997817 #>>43997825 #>>43998830 #
voidspark ◴[15 May 25 16:28 UTC] No.43996649[source]
How can customer support operate without knowing anything about the customer?
replies(4): >>43996708 #>>43996714 #>>43996892 #>>43996992 #
browningstreet ◴[15 May 25 16:51 UTC] No.43996892[source]
You know how your bank asks you to verify details when you call?

Without the right details the customer support people don’t get entry into the customers account details.

Banks have been doing this for 30+ years..

replies(2): >>43997387 #>>44000593 #
1. bcrosby95 ◴[16 May 25 00:10 UTC] No.44000593[source]
This also wouldn't be particularly difficult to implement.