The U.S. Justice Department has launched an investigation into a recent security breach at Coinbase Global Inc., one of the largest cryptocurrency exchanges in the world, according to a recent Bloomberg report.
The probe is being led by the department’s criminal division in Washington and aims to uncover how the breach occurred and who was responsible.
Coinbase Hack Tied to Bribery Scheme Targeting India-Based Staff
Initial reports from Coinbase suggest that the hack involved a sophisticated social engineering scheme. Criminals allegedly bribed employees and contractors based in India to gain unauthorized access to sensitive client information.
The breach has raised serious concerns about the security protocols in place at crypto exchanges, especially those operating on a global scale with outsourced support staff.
The Justice Department’s involvement signals the seriousness of the incident, given the potential implications for investor protection, cybersecurity, and the growing scrutiny of the crypto sector by U.S. regulators.
While Coinbase has not publicly disclosed the full extent of the data compromised, it has confirmed that an internal investigation is ongoing and that additional security measures have been implemented.
This incident highlights the vulnerabilities inherent in the digital asset ecosystem, particularly when it comes to insider threats and third-party risks.
As the crypto industry continues to mature, regulatory and enforcement bodies are increasingly stepping in to ensure compliance with security standards and legal accountability.
The outcome of the Justice Department’s probe could lead to broader regulatory reforms or enforcement actions impacting how exchanges manage employee access and protect customer data.
Also Read: Coinbase Faces SEC Scrutiny Amid Exchange Breach But Growth Outlook Remains Strong
DOJ Investigation Comes as Coinbase Faces Multiple Lawsuits
Between May 15 and May 16, at least six lawsuits were filed against Coinbase by users who claim the company mishandled the recent data breach.
As UnoCrypto reported earlier, the plaintiffs allege that Coinbase failed to implement adequate security measures to prevent the attack and did not respond appropriately after the incident occurred.
Several users argue that the company was negligent in protecting sensitive personal and financial information, especially given its position as a leading cryptocurrency exchange.
The lawsuits also accuse Coinbase of failing to notify affected customers in a timely manner and not offering sufficient support or remediation.
As the breach draws increased regulatory and legal attention, Coinbase now faces mounting pressure not only to improve its security practices but also to rebuild trust with its user base and demonstrate transparency and accountability in handling cybersecurity incidents.
Coinbase Data Breach: What Happened?
Coinbase had announced on May 15 that it had been the target of a $20 million extortion attempt following a targeted intrusion.
To obtain access to the exchange’s internal systems, cybercriminals allegedly bought off a number of customer service representatives four days prior. Sensitive user data was also stolen as a consequence of this intrusion.
Government-issued identification documents such as driver’s licenses and passports, names, addresses, phone numbers, email addresses, partial Social Security numbers, and certain banking information were among the leaked data.