←back to thread

I have recordings proving Coinbase knew about breach months before disclosure

(jonathanclark.com)
685 points jclarkcom | 3 comments | 16 Nov 25 20:18 UTC | HN request time: 0s | source
1. happyopossum ◴[16 Nov 25 21:39 UTC] No.45948654[source]
Interesting timeline, but nothing here proves, or even strongly indicates, that Counbase “knew about the breach” from this one report.

Screenscraping malware is fairly common, and it’s not unreasonable for an analyst to look at a report like this and assume that the customer got popped instead of them.

Customers get popped all the time, and have a tendency to blame the proximate corporation…

replies(1): >>45948809 #
2. jclarkcom ◴[16 Nov 25 21:59 UTC] No.45948809[source]
That's true, but in this case I got a response from the head of trust and safety after I sent the phone recording, email + email headers, saying "This report is super robust and gives us a lot to look into. We are investigating this scammer now."
replies(1): >>45950300 #
3. bpt3 ◴[17 Nov 25 02:15 UTC] No.45950300[source]
So they looked into it and eventually determined the root cause and then took action.

I don't know why you think acknowledgement of your report is concrete evidence that coinbase knew about their breach months before it was disclosed.