{"id":9064,"date":"2023-05-30T17:47:58","date_gmt":"2023-05-30T12:17:58","guid":{"rendered":"https:\/\/threatcop.com\/blog\/?p=9064"},"modified":"2026-04-16T13:02:17","modified_gmt":"2026-04-16T07:32:17","slug":"coinbase-data-breach","status":"publish","type":"post","link":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/","title":{"rendered":"Coinbase Data Breach: The Role of Employee Unawareness"},"content":{"rendered":"<p style=\"text-align: justify;\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">In the current era, where data holds immense value, a single data breach can potentially impact individuals, damage a brand&#8217;s reputation, and leads to financial losses ranging from hundreds of millions to billions. An example of such <strong>an incident occurred with<\/strong><\/span><span style=\"color: #183994;\"><strong><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/sms-phishing-scam-ocbc-bank\/\"> OCBC Bank<\/a><\/strong><\/span><span style=\"font-weight: 400;\"><strong>, which incurred a financial loss of $13.7 million due to an SMS phishing scam.<\/strong> It is shocking to observe that despite the risks, people&#8217;s naivety leads them to overlook the threat posed by SMS phishing, making them susceptible to falling victim to such attacks.<\/span><\/span><\/p><div id=\"ez-toc-container\" class=\"ez-toc-v2_0_83 ez-toc-wrap-center counter-hierarchy ez-toc-counter ez-toc-light-blue ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Table of Contents<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"Toggle Table of Content\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #414141;color:#414141\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #414141;color:#414141\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#How_Social_Engineering_Exposed_the_Confidential_User_Data_of_Coinbase\" >How Social Engineering Exposed the Confidential User Data of Coinbase?<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#Here_is_the_Detailed_Breakdown_of_the_Coinbase_Data_Breach\" >Here is the Detailed Breakdown of the Coinbase Data Breach<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#What_is_Coinbases_Take_on_the_Data_Breach\" >What is Coinbase\u2019s Take on the Data Breach?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#What_was_the_Nodal_Point_of_the_Coinbase_Data_Breach\" >What was the Nodal Point of the Coinbase Data Breach?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#How_Could_Employees_Have_Prevented_the_Coinbase_Data_Breach\" >How Could Employees Have Prevented the Coinbase Data Breach?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#Did_Coinbase_Data_Breach_Cause_Financial_Damage\" >Did Coinbase Data Breach Cause Financial Damage?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#What_Does_Global_Data_Say_About_Data_Breach\" >What Does Global Data Say About Data Breach?<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#How_Can_CISOsCIOs_Prevent_Their_Business_from_Such_Attacks\" >How Can CISOs\/CIOs Prevent Their Business from Such Attacks?<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#Regular_Training\" >Regular Training<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#Book_a_Free_Demo_Call_with_Our_People_Security_Expert\" >Book a Free Demo Call with Our People Security Expert<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#Enter_your_details\" >Enter your details<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#Implement_Security_Protocols_and_Policies\" >Implement Security Protocols and Policies<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#FAQs_Coinbase_data_Breach\" >FAQs: Coinbase data Breach<\/a><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n\n\n<style type=\"text\/css\">\n      @media print, screen and (max-width: 63.99875em){\n      .tnp-submit\n      width: 48%;\n      }\n      .wp-block-tnp-minimal{\n      padding: 20px;\n      }\n      .blog_para\n      margin-top: 4px !important;\n      line-height: 25px !important;\n      font-size: 15px !important;\n      }\n\n      }\n      .blog_para{\n      font-family: jost,sans-serif;\n      margin-top: 14px;\n      margin-bottom: 30px;\n      color: #fff;\n      font-size: 15px !important;\n      color: black !important;\n\n      }\n\n      .wp-block-tnp-minimal{\n      padding:20px;\n      border: 1px solid grey;\n      }\n\n      .tnp-submit a{\n        background: #1d58c7!important;\n    border-radius: 5px!important;\n    text-transform: inherit!important;\n    padding: 8px 25px!important;\n    font-weight: 600!important;\n    color: #fff!important;\n    width: 30%!important;\n    border: none;\n      }\n\n      .blog_get{\n      font-size: 24px !important;\n      font-weight: 700;\n      padding-bottom: 0px;\n    font-family: 'Poppins' !important;\n      margin-bottom: 0px;\n      margin-top: 0px;\n      margin-bottom: 0px !important;\n      color: white;\n          line-height: 30px;\n          color: white;\n      }\n      .row{\n             display: flex;\n    flex-wrap: wrap;\n    flex-direction: row;\n    padding: 25px 0px 25px 36px;\n    align-items: center;\n\n      }\n\n.colLeft{\n         flex-basis:50%;\n    -webkit-box-flex: 0;\n    flex-grow: 0;\n    max-width: 50%;\n    color: white;\n}\n    \n .colRight{\n       flex-basis: 45%;\n    -webkit-box-flex: 0;\n    flex-grow: 0;\n    max-width: 50%;\n }\n\n.tnp-subscription-minimal{\n    float: right;\n}\n<\/style>\n<div style=\"max-width: 741px; margin: 0 auto; background-image: url('https:\/\/awareness.threatcop.ai\/marketing\/linkedinlowerbanner.webp'); background-repeat: no-repeat; background-size: cover; background-position: center; \">\n<div class=\"row\">\n<div class=\"colLeft\">\n<p class=\"blog_get\" style=\"font-family: 'Poppins' !important; color: white !important\">Subscribe to Our Newsletter On Linkedin<\/p>\n<p class=\"blog_para\" style=\"font-size: 16px;font-family: 'Poppins' !important; color: white !important; margin-top: 10px; margin-bottom: 28px;line-height: 25px;\">Sign up to Stay Tuned with the Latest Cyber Security News and Updates<\/p>\n\n<div>\n<div class=\"tnp\" style=\"margin-bottom: 10px;\">\n            <form action=\"https:\/\/threatcop.com\/newsletter-thank-you\" method=\"get\" target=\"_blank\">\n<div class=\"tnp-submit\">\n                  <a class=\"libutton\" href=\"https:\/\/www.linkedin.com\/build-relation\/newsletter-follow?entityUrn=7062043746430783488\" target=\"_blank\" rel=\"noopener\">Subscribe<\/a><\/div>\n<\/form><\/div>\n<\/div>\n<\/div>\n<div class=\"colRight\">\n<div>\n<div class=\"tnp tnp-subscription-minimal \">\n            <img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/marketing\/newsletter-icon.webp\" class=\"img-fluid\"><\/div>\n<\/div>\n<\/div>\n<\/div>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The above data breach shows social engineering-led attacks are more prevalent nowadays. According to a <\/span><strong><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/firewalltimes.com\/social-engineering-statistics\/#:~:text=The%20Average%20Organization%20Is%20Targeted%20by%20700%2B%20Social%20Engineering%20Attacks%20Annually\">report<\/a><\/span><\/strong><span style=\"font-weight: 400;\"> over <\/span><b>700 social engineering attacks take place yearly in an organization<\/b><span style=\"font-weight: 400;\">. And one such attack happened <\/span><span style=\"font-weight: 400;\">with Coinbase where a social engineer cum hacker led an SMS phishing attack to gaincompromise the user\u2019s data. In this blog, we will get you down to the details of the attack and discuss the importance of prioritizing cybersecurity in today&#8217;s business environment.<\/span><\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"How_Social_Engineering_Exposed_the_Confidential_User_Data_of_Coinbase\"><\/span><b>How Social Engineering Exposed the Confidential User Data of Coinbase?<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">The popular Coinbase cryptocurrency exchange platform has disclosed that the so-called <strong>\u201c0ktapus\u201d hackers stole the login credentials of one of its employees<\/strong>. Threat actors attempted this to remotely gain access to the company\u2019s systems. The hackers were able to access some contact information belonging to multiple Coinbase employees as they viewed the dashboard of several internal communication tools. Along with this, they <\/span><span style=\"font-weight: 400;\">get their hands on user information from the corporate accounts of employees.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Allegedly <strong>Oktapus has targeted<\/strong><\/span><strong><a style=\"color: #000000;\" href=\"https:\/\/techcrunch.com\/2023\/02\/21\/0ktapus-coinbase-stolen-employees-information\/?guccounter=1#:~:text=0ktapus%20is%20a,video%20game%20companies.\" target=\"_blank\" rel=\"noopener\"> <span style=\"color: #183994;\">more<\/span> <span style=\"color: #183994;\">than 130 tech and video game companies<\/span><\/a><\/strong><span style=\"font-weight: 400;\"><strong> in 2022 which include&nbsp; Twilio, Cloudflare, MailChimp, and Signal<\/strong>. In the ongoing effort to get control of the login information of thousands of employees, they frequently pretended to be legitimate login sites. This is according to a leaked CrowdStrike report seen by TechCrunch.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Following the attack, Coinbase shared the findings of their investigation to alert other companies, identify the threat actor&#8217;s tactics, techniques, and procedures (TTPs), and set up appropriate defenses. We came to know how the hackers executed this attack.<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Here_is_the_Detailed_Breakdown_of_the_Coinbase_Data_Breach\"><\/span><b>Here is the Detailed Breakdown of the Coinbase Data Breach<\/b><span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">On Sunday, February 5, the <\/span><b>attacker sent an SMS labeling it as an &#8220;Important corporate notification&#8221; to a number of Coinbase employees<\/b><\/span><span style=\"font-weight: 400;\"><span style=\"color: #000000;\"> asking them to connect to their corporate accounts to receive a crucial message. The message spoofed \u201cimportant corporate notification\u201d SMS to five employees with a phishing link to a website impersonating the Coinbase corporate login page, which was actually a malicious landing page intended to steal credentials.<\/span>&nbsp;<\/span><\/p>\n\n\n<div class=\"wp-block-image wp-image-9070\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"972\" height=\"680\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/Source-Crypto-Hopper.png\" alt=\"Text message employed during SMS Phishing on Coinbase\" class=\"wp-image-9070\"\/><figcaption class=\"wp-element-caption\"><span style=\"color: #000000;\">(Source: Crypto Hopper)<\/span><\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Many employees disregard that message but one fell for the ruse and clicked the link to the phishing page and entered his credentials. The page displayed a thank you message for verifying the information and securing the account and told them to ignore the message after inputting their credentials.<\/span><\/p>\n\n\n<div class=\"wp-block-image wp-image-9071\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"1314\" height=\"694\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/1680171583326.png\" alt=\"6 digit code authenticator of Coinbase internal system\" class=\"wp-image-9071\"\/><figcaption class=\"wp-element-caption\"><span style=\"color: #000000;\">6-digit 2FA on Coinbase Login Page<\/span><\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">The attacker then attempted to use the stolen credentials to get into Coinbase&#8217;s internal systems but was unable to do so because access was restricted by multi-factor authentication (MFA). Coinbase has employed Yubikeys, a hardware token used to generate 6 &#8211; a digit codes for MFA.<\/span><\/p>\n\n\n<div class=\"wp-block-image\">\n<figure class=\"aligncenter\"><a href=\"https:\/\/threatcop.com\/vishing-awareness-and-simulation\"><img loading=\"lazy\" decoding=\"async\" width=\"612\" height=\"434\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/source-istock_.jpg\" alt=\"A graphic depicting Vishing attack\" class=\"wp-image-9073\"\/><\/a><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">After a few failed attempts, about 20 minutes later, the <\/span><b>attacker switched to a different plan of attack known as <span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/types-and-techniques-of-phishing-attacks\/#:~:text=Vishing,ID%2C%20password%2C%20etc.\">vishing or voice phishing<\/a><\/span>.<\/b><span style=\"font-weight: 400;\"> The hacker then impersonated a security guy and called the employee who initially compromised credentials. The victim was instructed to enter their workstation and asked to install AnyDesk followed by ISL Online for the security guy to carry out some crucial steps<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong><span style=\"color: #000000;\">You can also check out more on <span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/vishing-awareness-and-simulation\">Vishing Training and Simulation<\/a><\/span><\/span><\/strong><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">This was set up with the intention of installing a program called EditThisCookie, which is used to retrieve passwords and access tokens from web browsers. As the hackers got access to the employee&#8217;s corporate account through AnyDesk, <\/span><b>they installed EditThisCookie plugin to record all the passwords and hardware tokens.<\/b><span style=\"font-weight: 400;\"> In the process, the <\/span><b>hackers gained access to the employee&#8217;s corporate directory, which contained Coinbase\u2019s customer data.<\/b><span style=\"font-weight: 400;\"> This method of carrying out a security breach is known as lateral movement, where one compromise leads to another until the whole system is exposed. <\/span><\/span><\/p>\n\n\n<div class=\"wp-block-image wp-image-9072\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"790\" height=\"727\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/Hal-Born2.png\" alt=\"Coinbase locked the account after multiple unsolicited login attempts\" class=\"wp-image-9072\"\/><figcaption class=\"wp-element-caption\"><strong><span style=\"color: #000000;\">Coinbased locked the account after multiple login<\/span><\/strong><\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\">According to Coinbase, they got an alert within the first 10 minutes of the breach attack, and its security team reached out to the victim to inquire about the suspicious activity from their account, directing the employee to cut down all communications with the adversary. This happened because Coinbase employed the XDR (Extended Detection and Response) tool, which identified an unusual pattern of operation in the employees\u2019 workstations and warned the security team of the company.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400;\"><span style=\"color: #000000;\">However, <strong>Coinbase released an official statement where they stated that their system suffered a security breach for a while, which exposed some of their customers&#8217; data<\/strong>. They urged others to be on the lookout for potential attempts to install remote desktop software such as AnyDesk or ISL Online as well as a legitimate Google Chrome extension called EditThisCookie.<\/span>&nbsp;<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong><span style=\"color: #000000;\">You can read more about<\/span>&#8211;&nbsp;<span style=\"color: #183994;\"><em><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/sms-phishing-scam-ocbc-bank\/\">SMS Phishing Scam: OCBC Bank\u2019s Customers lost $8.5 Million<\/a><\/em><\/span><\/strong><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_is_Coinbases_Take_on_the_Data_Breach\"><\/span><b>What is Coinbase\u2019s Take on the Data Breach?<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">While talking to TechCrunch, Coinbase spokesperson Jaclyn Sales said that a <strong>threat actor was able to view the dashboard of a small number of internal Coinbase communication tools and access limited employee contact information.<\/strong> Coinbase claimed that no customer data was accessed, but the company\u2019s chief information security officer, Jeff Lunglhofer, <strong>recommends users consider switching to hardware security keys for stronger account access<\/strong> but did not say whether it uses hardware keys internally, which cannot be phished.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">\u201cThe threat actor was able to see, through a screen share, certain views of internal dashboards and accessed limited employee contact information. Our security team was able to detect unusual activity quickly and prevent any other access to internal systems or data,\u201d Sales added.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">This <strong>attack was not new to Coinbase as the company was breached in 2021 as well.<\/strong> In the last quarter of 2021, hackers gained unauthorized access to data from the Coinbase cryptocurrency platform. The <strong>cryptocurrency corporation responded to the hack by notifying more than 6,000 clients of the breach and its potential repercussions<\/strong>. Although the attack ended with the theft of cryptocurrency, it also had the potential to result in identity theft.<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_was_the_Nodal_Point_of_the_Coinbase_Data_Breach\"><\/span><b>What was the Nodal Point of the Coinbase Data Breach?<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Similar to numerous other<span style=\"color: #183994;\"><strong><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/oilalpha-hacker-group-targets-yemen\/\"> social engineering-driven attacks<\/a><\/strong><\/span>, the Coinbase data breach also arose from the <strong>negligence of its employees, ultimately resulting in a security breach<\/strong>. It is worth emphasizing that humans remain the most vulnerable targets within any organization. Had the Coinbase employees possessed sufficient awareness to identify the initial fraudulent SMS, the attack could have been thwarted from its inception. Furthermore, the <strong><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/vishing-attack\/\">vishing attack<\/a><\/span> succeeded due to the employee&#8217;s failure to ascertain the legitimacy of the individual on the phone<\/strong>, who purported to be an IT professional affiliated with Coinbase.<\/span><\/p>\n\n\n<div class=\"wp-block-image wp-image-9076\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"720\" height=\"406\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/CompTIA.jpg\" alt=\"human error\" class=\"wp-image-9076\"\/><figcaption class=\"wp-element-caption\"><span style=\"color: #000000;\">(Source: Cybint)<\/span><\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\"><strong>Uber security breach (2022) is another instance of human error where an employee ended up giving credentials to a duped co-worker<\/strong>. Threat actors used it to get full access to the cloud-based systems where Uber holds critical consumer and financial data.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">A recent report <\/span><a href=\"https:\/\/www.oxial.com\/grc-blog\/eliminating-the-human-element-to-cyber-security-breaches\/#:~:text=A%20recent%20Oracle%20report%20%E2%80%98Security%20in%20the%20Age%20of%20AI%E2%80%99%20revealed%20that%20C%2DSuite%20executives%20and%20policy%20makers%20rank%20%E2%80%98human%20error%E2%80%99%20as%20the%20top%20cybersecurity%20risk%20for%20their%20organisation.\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\"><span style=\"color: #183994;\">\u2018<strong>Security in the Age of AI\u2019<\/strong><\/span><\/span><\/a><span style=\"color: #000000;\"><span style=\"font-weight: 400;\"> mentioned that C-Suite executives and policymakers <\/span><b>rank \u2018human error\u2019 as the top cybersecurity risk for their organization<\/b><span style=\"font-weight: 400;\">. And research by IBM Security says that data breaches happened due to<\/span><b> employee negligence are 95%<\/b><span style=\"font-weight: 400;\">. The top cybersecurity organization and <\/span><\/span><a href=\"https:\/\/securitytoday.com\/articles\/2022\/07\/30\/just-why-are-so-many-cyber-breaches-due-to-human-error.aspx#:~:text=Let%E2%80%99s%20start%20with%20a%20statistic.%20A%20joint%20study%20by%20Stanford%20University%20Professor%20Jeff%20Hancock%20and%20security%20firm%20Tessian%20has%20found%20that%20a%20whopping%2088%20percent%20of%20data%20breach%20incidents%20are%20caused%20by%20employee%20mistakes.%20Similar%20research%20by%20IBM%20Security%20puts%20the%20number%20at%2095%20percent.\" target=\"_blank\" rel=\"noopener\"><span style=\"font-weight: 400;\"><strong><span style=\"color: #183994;\">Researchers from Stanford University<\/span><\/strong><\/span><\/a><span style=\"color: #000000;\"><span style=\"font-weight: 400;\"> revealed that<\/span><b> approximately 88% of all data breaches are due to human errors<\/b><span style=\"font-weight: 400;\">. Human error is still the driving force behind an overwhelming majority of cybersecurity problems.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong><span style=\"color: #000000;\">Read more about<\/span>:&nbsp;<span style=\"color: #183994;\"><em><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/spear-phishing\/\">The Threat of Smishing is on the Highland<\/a><\/em><\/span><\/strong><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"How_Could_Employees_Have_Prevented_the_Coinbase_Data_Breach\"><\/span>How Could Employees Have Prevented the Coinbase Data Breach?<span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Although Coinbase&#8217;s security team identified the breach before significant damage occurred, the employees could have played a crucial role in preventing the attack. The employee who fell for the phishing link lacked proper cybersecurity training and awareness. Firstly, if the employees had been provided with tools or training to <span style=\"color: #183994;\"><strong><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/phishing-url-checker\">check the legitimacy of URLs<\/a><\/strong><\/span> in phishing messages, they could have identified the suspicious link and halted the attack. <\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Furthermore, if they had been educated about social engineering tactics and the importance of verifying the legitimacy of requests for sensitive information or actions, the employee who fell for the <strong><a href=\"https:\/\/threatcop.com\/blog\/vishing-attack\/\" target=\"_blank\" rel=\"noopener\"><span style=\"color: #183994;\">vishing attack<\/span><\/a><\/strong> would have been able to recognize that the individual on the phone was not genuine IT personnel. <\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">According to Frontier magazine, <b>83% of organizations have seen voice phishing attempts to obtain OTPs or authorize MFA login<\/b>. Employees need to be trained to recognize social engineering tactics and verify the identity of any person or medium, which requests or demands sensitive information or asks them to perform a certain action.&nbsp;<\/span><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Did_Coinbase_Data_Breach_Cause_Financial_Damage\"><\/span><b>Did Coinbase Data Breach Cause Financial Damage?<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Although Coinbase reported that no customer data was accessed during the data breach, it still incurred significant costs. According to a filing with the US Securities and Exchange Commission, <strong>Coinbase is estimated to lose $1.1 million in revenue due to the data breach<\/strong>. The company also faced legal and regulatory scrutiny, which could further impact its reputation and revenue.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong><span style=\"color: #000000;\">Read more about:<\/span><span style=\"color: #183994;\"><em>&nbsp;<\/em><em><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/spear-phishing\/\">What is Spear Phishing Attack and How Can It be Prevented?<\/a><\/em><\/span><\/strong><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"What_Does_Global_Data_Say_About_Data_Breach\"><\/span><b>What Does Global Data Say About Data Breach?<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">In a report published by RiskBased Security, there were <strong>1,767 publicly reported data breaches in the first six months of 2021, exposing 18.8 billion records<\/strong>. The report also found that the <strong>number of data breaches increased by 24% compared to the same period in 2020<\/strong>. This data highlights the global scale of cyberattacks and the need for businesses to prioritize cybersecurity.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400;\"><span style=\"color: #000000;\">The threat of cyberattacks on companies is a growing concern globally.<\/span>&nbsp;<\/span><\/p>\n\n\n<div class=\"wp-block-image wp-image-9077\">\n<figure class=\"aligncenter\"><img loading=\"lazy\" decoding=\"async\" width=\"1602\" height=\"1018\" src=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/Security-Breaches-led-by-Human-Error_2x-100.jpg\" alt=\"Security Breaches led by Human Error\" class=\"wp-image-9077\"\/><figcaption class=\"wp-element-caption\">&nbsp;<\/figcaption><\/figure>\n<\/div>\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">According to a report by Cybersecurity Ventures, the <strong>global cost of <span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/cybercrime\/\">cybercrime<\/a><\/span> is expected to reach $10.5 trillion by 2025<\/strong>. The report also highlights that there will be a new <strong>ransomware attack every 11 seconds by 2021<\/strong>. Here are some more statistics about cyberattacks faced by companies globally:<\/span><\/p>\n\n\n\n<ul class=\"wp-block-list\">\n<li><span style=\"font-weight: 400; color: #000000;\">In 2020, the number of <strong>cyberattacks on businesses increased by 20%<\/strong> compared to the previous year. It was reported by Accenture.&nbsp;<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">IBM published a report that mentioned that in 2020, the <strong>average cost of a data breach was $3.86 million<\/strong>.<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\"><strong>95% of cybersecurity breaches are caused by human error,<\/strong> said Cybint Solutions<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">According to HIPAA Journal In 2020, the healthcare industry was the most targeted industry by cybercriminals, with <strong>79% of healthcare organizations experiencing a data breach<\/strong>.&nbsp;<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">The <strong>financial services industry is the second most targeted industry by cybercriminals<\/strong>, with an estimated cost of $18.3 million per organization,&nbsp; Accenture quoted.&nbsp;<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\">In 2020, there were <strong>16 billion records exposed in data breaches<\/strong>. (source: RiskBased Security)<\/span><\/li>\n\n\n\n<li><span style=\"font-weight: 400; color: #000000;\"><strong>Phishing attacks remain the most common type of cyberattack<\/strong>, accounting for 80% of all reported security incidents. (source: Verizon)<\/span><\/li>\n<\/ul>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">These statistics show that cyberattacks are a significant threat to companies globally and can have severe financial and reputational consequences.&nbsp;<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><strong><span style=\"color: #000000;\">Check out- <span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/blog\/ransomware-statistics\/\">Ransomware Statistics: What Data and Trends Say?<\/a><\/span><\/span><\/strong><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"How_Can_CISOsCIOs_Prevent_Their_Business_from_Such_Attacks\"><\/span><b>How Can CISOs\/CIOs Prevent Their Business from Such Attacks?<\/b><span class=\"ez-toc-section-end\"><\/span><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Do you feel that your employees are equipped and trained enough to prevent data breaches at their level? Employee negligence or unawareness can lead to horrible loss to your company\u2019s reputation and financial state and cybersecurity training is the need of the hour. The C-suites need to take robust steps to improve their company&#8217;s cybersecurity posture.&nbsp;<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Here is how the C-suite can prevent their business from cyber-attacks based on social engineering:<\/span><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Regular_Training\"><\/span><b>Regular Training<\/b><span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\"><span style=\"color: #183994;\"><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/cybersecurity-awareness\"><strong>Regular employee training<\/strong><\/a><\/span> is the primary defense against social engineering attacks, including phishing, pretexting, baiting, and quid pro quo. Education should cover identification and response methods for these common attack methods, as well as warning signs in various forms of communication.<\/span><\/p>\n\n\n\n<!DOCTYPE html>\n<html lang=\"en\">\n\n<head>\n    <meta charset=\"UTF-8\">\n    <meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\">\n    <meta name=\"viewport\" content=\"width=device-width, initial-scale=1.0\">\n    <title>Document<\/title>\n<\/head>\n\n<style>\n    .interestedBtn {\n        width: 80% !important;\n        box-sizing: border-box !important;\n        display: inline-block !important;\n        padding: 11px !important;\n        border: 1px !important;\n        border-color: #ddd !important;\n        margin-top: 10px !important;\n        background-color: #183e8b !important;\n        background-image: none !important;\n        text-shadow: none !important;\n        color: #fff !important;\n        font-size: 14px !important;\n        line-height: 20px !important;\n        border-radius: 5px !important;\n        margin: 0 !important;\n        cursor: pointer !important;\n        box-shadow: 0px 4.66px 22.99px 0px rgba(0, 0, 0, 0.10);;\n    }\n\n\n        .formSec .formSecTwo{\n            padding-top: 15px !important;\n            margin-bottom: 30px !important;\n        }\n\n\n    .tnp-email {\n        width: 80% !important;\n        box-sizing: border-box;\n        padding: 8px 10px;\n        display: inline-block;\n        border: 1px solid #ced4da;\n        background: #fff;\n        color: #000 !important;\n        font-size: 13px;\n        line-height: 20px;\n        border-radius: 2px;\n        padding-right: 30px;\n        margin-bottom: 0px;\n    }\n\n    .formSec {\n        border: 1px solid #ced4da;\n        float: left !important;\n        width: 55% !important;\n    }\n\n    .mainBox {\n       \/* border: 1px solid #183e8b;*\/\n         background: white;\n        max-width: 600px !important;\n        margin: 0 auto !important;\n        padding: 20px !important;\n        font-family: Arial, Helvetica, sans-serif !important;\n    }\n\n    .boxDiv {\n        display: flex !important;\n    }\n\n    .boxConsult {\n        float: left !important;\n        width: 45% !important;\n        padding: 10px !important;\n    }\n\n    .formSecTwo {\n        text-align:center !important;\n        width: 100% !important;\n    }\n\n    .formHeading {\n        font-family: Arial, Helvetica, sans-serif;\n        margin-top: 0px;\n        font-weight: 700;\n        line-height: 25px;\n        font-size: 18px !important;\n        \n       margin-bottom: 60px !important;\n       color: #000!important;\n          margin-top: 5px !important;\n    }\n\n    .fieldHeading {\n        margin: 0 !important;\n        font-size: 13px !important;\n        text-align: left !important;\n        margin: 0px 39px 2px 93px !important;\n        font-weight: 500 !important;\n    }\n\n    .image {\n        max-width:90% !important;\n        height: auto !important;\n    }\n\n     .email-icon {\n            position: absolute;\n            right: 50px;\n             top: 20px;\n            transform: translateY(-50%);\n            pointer-events: none; \n        }\n\n          .email-container{\n             position: relative;\n         \n        }\n       \n\n        .email-icon img{\n                 width: 15px;\n        }\n\n\n         input::placeholder {\n            color:#495057;\n        }\n\n\n     ::placeholder {\n        color: #495057;\n    }\n\n        ::-ms-input-placeholder { \n          color:#495057;\n        }\n\n\n        input:-webkit-autofill {\n            background-color: transparent !important;\n            -webkit-box-shadow: 0 0 0px 1000px white inset !important; \n            box-shadow: 0 0 0px 1000px white inset !important;\n            color: #495057 !important; \n        }\n\n        \n        input {\n            color:#495057 !important;\n        }\n\n\n    @media screen and (max-width: 480px) {\n        .boxDiv {\n            display: block !important;\n            padding: 15px !important;\n         \n        }\n\n        .image{\n        width: 80% !important;\n         margin-bottom: 14px;\n        }\n        .fieldHeading {\n            text-align: left !important;\n            margin: unset !important;\n        }\n\n        .boxConsult {\n            width: unset !important;\n            float: none !important;\n        }\n\n        .mainBox {\n            border: unset !important;\n        }\n\n        .formSec {\n            float: unset !important;\n            width: 100% !important;\n        }\n\n        .formSecTwo {\n            text-align: center !important;\n        }\n\n        .tnp-email {\n            width: 90% !important;\n        }\n\n        .formHeading {\n            margin-bottom: unset !important;\n        }\n\n         .email-icon {\n            position: absolute;\n            right: 25px;\n            top: 58%;\n            transform: translateY(-50%);\n            pointer-events: none; \/* Make sure the icon doesn't block clicking on the input *\/\n        }\n       \n        .email-container{\n             position: relative;\n        }\n\n    }\n<\/style>\n\n<body>\n\n    <div class=\"mainBox\" box-sizing:=\"\" border-box;=\"\">\n\n        <div class=\"boxDiv\">\n\n            <div class=\"boxConsult\">\n                <div>\n                    <h3 class=\"formHeading\" style=\" font-size: 16px !important;\"><span class=\"ez-toc-section\" id=\"Book_a_Free_Demo_Call_with_Our_People_Security_Expert\"><\/span>\n                        Book a Free Demo Call with Our People Security Expert<span class=\"ez-toc-section-end\"><\/span><\/h3>\n                <\/div>\n                <img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/form.svg\" class=\"image\">\n            <\/div>\n\n            <div class=\"formSec\">\n                <div class=\" formSecTwo\">\n                    <h4 style=\"margin-top: 0; font-size: 16px !important;\"><span class=\"ez-toc-section\" id=\"Enter_your_details\"><\/span>Enter your details<span class=\"ez-toc-section-end\"><\/span><\/h4>\n                    <div class=\"tnp tnp-subscription-minimal\">\n                        <form action=\"https:\/\/threatcop.com\/thankyou-blog\" method=\"get\" target=\"_blank\">\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\n\n                                <input class=\"tnp-email\" type=\"text\" required=\"\" name=\"FullName\" value=\"\"\n                                    placeholder=\"Full Name\">\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon01.svg\" class=\"img-fluid\" \/><\/span>\n                            <\/div>\n\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\n                               \n                                <input class=\"tnp-email\" type=\"email\" required=\"\" name=\"email\" value=\"\"\n                                    placeholder=\"Corporate Email Id\">\n                                     <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon02.svg\" class=\"img-fluid\" \/><\/span>\n                            <\/div>\n\n                            <div class=\"email-container\" style=\"margin-bottom:20px;\">\n                               \n                                <input class=\"tnp-email\" type=\"text\" required=\"\" name=\"CompanyName\" value=\"\"\n                                    placeholder=\"Company Name\">\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon03.svg\" class=\"img-fluid\" \/><\/span>\n\n                            <\/div>\n\n                            <div class=\"email-container\">\n                               \n                                <input class=\"tnp-email\" type=\"number\" required=\"\" name=\"Phone\" value=\"\"\n                                    placeholder=\"Phone No.\"><br>\n                                    <span class=\"email-icon\"><img decoding=\"async\" src=\"https:\/\/awareness.threatcop.ai\/threatcop_blog\/icon04.svg\" class=\"img-fluid\" \/><\/span>\n                            <\/div>\n                            <input type=\"hidden\" name=\"BlogForm\" value=\"BlogForm\"><br>\n                            <input class=\"tnp-submit interestedBtn\" name=\"submit\" type=\"submit\"\n                                value=\"SUBMIT\">\n\n                        <\/form>\n                    <\/div>\n                <\/div>\n            <\/div>\n\n        <\/div>\n    <\/div>\n\n<\/body>\n\n<\/html>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"Implement_Security_Protocols_and_Policies\"><\/span><b>Implement Security Protocols and Policies<\/b><span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"font-weight: 400; color: #000000;\">Establishing clear security protocols and policies is critical to prevent social engineering attacks. Policies should include guidelines on data access, sharing, and storage, and protocols for handling sensitive information. It should also outline the steps to be taken in case of a security breach or data theft.<\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><span style=\"font-weight: 400;\">Organizations must use smishing simulation and awareness training by <\/span><span style=\"color: #183994;\"><strong><a style=\"color: #183994;\" href=\"https:\/\/threatcop.com\/threatcop-security-awareness-training\">TSAT<\/a><\/strong><\/span><span style=\"font-weight: 400;\"> to teach staff about smishing attack assaults, how they are led, and how they may be prevented in order to prevent attacks like the data leak in Coinbase. Humans are the easiest target of attacks happening through social engineering and once they are trained and equipped they can sense and prevent any such attacks.<\/span><\/span><\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><span style=\"color: #000000;\"><strong>Also Read:<\/strong><\/span> <a href=\"https:\/\/threatcop.com\/blog\/information-security-in-the-middle-east\/\"><strong><em><span style=\"color: #183994;\">How is Information Security Shaping the Cyber World in the Middle East?<\/span><\/em><\/strong><\/a><\/p>\n\n\n\n<h3 class=\"wp-block-heading\"><span class=\"ez-toc-section\" id=\"FAQs_Coinbase_data_Breach\"><\/span><b>FAQs: Coinbase data Breach<\/b><span class=\"ez-toc-section-end\"><\/span><\/h3>\n\n\n\n<div class=\"schema-faq wp-block-yoast-faq-block\"><div class=\"schema-faq-section\" id=\"faq-question-1685441183116\"><strong class=\"schema-faq-question\">Who is the threat actor for the Coinbase data breach?<\/strong> <p class=\"schema-faq-answer\">According to Coinbase, the attack was most likely carried out by 0ktapus. They are highly skilled cybercriminals that also target Twillio, Cloudflare, and at least 130 other companies with identical spoofed SMS-based text messages.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1685442372953\"><strong class=\"schema-faq-question\">What happens if Coinbase is hacked?<\/strong> <p class=\"schema-faq-answer\">It is crucial to act right away if your Coinbase account is hacked and you find that money has been taken out without your permission. To start an investigation into the situation, get in touch with your local law enforcement agency. Make sure the law enforcement officials speak with Coinbase directly as well, as the firm is committed to working closely with any legal inquiries regarding their platform.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1685442458295\"><strong class=\"schema-faq-question\">Is it safe to leave money on Coinbase?<\/strong> <p class=\"schema-faq-answer\">In general, leaving money in your Coinbase account is considered safe. Yet, there is always a chance that your personal information could be hacked, thereby allowing unwanted access to your account, as with any online site. To avoid this risk, it is vital to keep your password safe or have basic knowledge of cyber threats.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1685442492276\"><strong class=\"schema-faq-question\">How Can Attacks Like Coinbase Breach Be Prevented?<\/strong> <p class=\"schema-faq-answer\">Security awareness training can be an effective weapon in the fight against social engineering attacks which was faced by Coinbase. Organizations can assist prevent breaches brought on by human error or neglect by educating and training personnel on the best cybersecurity practices and data protection. This training can assist people in identifying and rejecting any spoofed SMS text messages. Hence, organizations should incorporate smishing awareness and simulation training programs. CISOs can take the help of <strong>Threatcop Security Awareness Training (<a href=\"https:\/\/threatcop.com\/threatcop-security-awareness-training\">TSAT<\/a>),<\/strong> which includes a smishing simulation element and an<strong> innovative learning management system (<a href=\"https:\/\/threatcop.com\/threatcop-learning-management-system\">TLMS<\/a>)<\/strong>.\u00a0<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1685442517586\"><strong class=\"schema-faq-question\">What is the Importance of Smishing Simulation and Awareness Training?<\/strong> <p class=\"schema-faq-answer\">Smishing is made of two words SMS+Phishing. It remains one of the most common and effective methods used by cybercriminals to trick individuals into revealing sensitive information. Smishing simulation and awareness training help people recognize and respond appropriately to these threats. Smishing awareness is important for organizations as employees can be vulnerable links.<\/p> <\/div> <div class=\"schema-faq-section\" id=\"faq-question-1685442558916\"><strong class=\"schema-faq-question\">Is there any reliable Smishing Simulation Tool Available?<\/strong> <p class=\"schema-faq-answer\">Yes, there are reliable smishing simulation tools available, and one such tool is the &#8220;<a href=\"https:\/\/threatcop.com\/smishing-awareness-and-simulation\"><strong>Smishing Awareness Training<\/strong><\/a>&#8221; offered by Threatcop<a href=\"https:\/\/threatcop.com\/\">.<\/a> These tools are important for organizations as they allow them to simulate realistic smishing attacks, test the awareness and response of their employees, and identify vulnerabilities in their security systems. The Smishing Awareness Training tool by <strong><a href=\"https:\/\/threatcop.com\/\">Threatcop<\/a><\/strong> specifically focuses on educating individuals about smishing threats, training them to recognize and respond appropriately, and reinforcing a culture of cybersecurity within the organization.<\/p> <\/div> <\/div>\n","protected":false},"excerpt":{"rendered":"<p>In the current era, where data holds immense value, a single data breach can potentially impact individuals, damage a brand&#8217;s reputation, and leads to financial losses ranging from hundreds of millions to billions. An example of such an incident occurred with OCBC Bank, which incurred a financial loss of $13.7 million due to an SMS [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":9079,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[42],"tags":[],"class_list":["post-9064","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity-awareness"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v27.6 - https:\/\/yoast.com\/product\/yoast-seo-wordpress\/ -->\n<title>How Employee Unawareness Led to Coinbase Data Breach?<\/title>\n<meta name=\"description\" content=\"In this blog, we will get you down to the details of the coinbase data breach and discuss the importance of prioritizing cyber security.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How Employee Unawareness Led to Coinbase Data Breach?\" \/>\n<meta property=\"og:description\" content=\"In this blog, we will get you down to the details of the coinbase data breach and discuss the importance of prioritizing cyber security.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/\" \/>\n<meta property=\"og:site_name\" content=\"Threatcop\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/\" \/>\n<meta property=\"article:published_time\" content=\"2023-05-30T12:17:58+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2026-04-16T07:32:17+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/Coinbase-data-breach.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"600\" \/>\n\t<meta property=\"og:image:height\" content=\"576\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Sanjana Kumari\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@threatcop\" \/>\n<meta name=\"twitter:site\" content=\"@threatcop\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Sanjana Kumari\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"37 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/\"},\"author\":{\"name\":\"Sanjana Kumari\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/person\\\/2703154c3efcd8ecca1e4683c696888d\"},\"headline\":\"Coinbase Data Breach: The Role of Employee Unawareness\",\"datePublished\":\"2023-05-30T12:17:58+00:00\",\"dateModified\":\"2026-04-16T07:32:17+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/\"},\"wordCount\":2512,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/05\\\/Coinbase-data-breach.jpg\",\"articleSection\":[\"Cybersecurity Awareness\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#respond\"]}]},{\"@type\":[\"WebPage\",\"FAQPage\"],\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/\",\"name\":\"How Employee Unawareness Led to Coinbase Data Breach?\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#primaryimage\"},\"thumbnailUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/05\\\/Coinbase-data-breach.jpg\",\"datePublished\":\"2023-05-30T12:17:58+00:00\",\"dateModified\":\"2026-04-16T07:32:17+00:00\",\"description\":\"In this blog, we will get you down to the details of the coinbase data breach and discuss the importance of prioritizing cyber security.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#breadcrumb\"},\"mainEntity\":[{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685441183116\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442372953\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442458295\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442492276\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442517586\"},{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442558916\"}],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#primaryimage\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/05\\\/Coinbase-data-breach.jpg\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/05\\\/Coinbase-data-breach.jpg\",\"width\":600,\"height\":576,\"caption\":\"Coinbase attack\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Coinbase Data Breach: The Role of Employee Unawareness\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#website\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\",\"name\":\"Threatcop\",\"description\":\"Cybersecurity Blogs, News, Updates, and Articles\",\"publisher\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#organization\",\"name\":\"Threatcop\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/03\\\/cropped-original-logo-TC.png\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2022\\\/03\\\/cropped-original-logo-TC.png\",\"width\":951,\"height\":228,\"caption\":\"Threatcop\"},\"image\":{\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/www.facebook.com\\\/people\\\/Threatcop\\\/100083109892339\\\/\",\"https:\\\/\\\/x.com\\\/threatcop\",\"https:\\\/\\\/www.linkedin.com\\\/company\\\/threatcop\\\/\",\"https:\\\/\\\/www.instagram.com\\\/threatcop_official\\\/\"]},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/#\\\/schema\\\/person\\\/2703154c3efcd8ecca1e4683c696888d\",\"name\":\"Sanjana Kumari\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/avatar_user_4_1696400016.png\",\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/avatar_user_4_1696400016.png\",\"contentUrl\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/wp-content\\\/uploads\\\/2023\\\/10\\\/avatar_user_4_1696400016.png\",\"caption\":\"Sanjana Kumari\"},\"description\":\"Security Compliance Executive Department: Compliance, Threatcop Sanjana is a Security Compliance Executive working on best-of-the-industry-level compliances relevant from a cybersecurity perspective, their implementation, learning and outcomes in various business domains.\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685441183116\",\"position\":1,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685441183116\",\"name\":\"Who is the threat actor for the Coinbase data breach?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"According to Coinbase, the attack was most likely carried out by 0ktapus. They are highly skilled cybercriminals that also target Twillio, Cloudflare, and at least 130 other companies with identical spoofed SMS-based text messages.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442372953\",\"position\":2,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442372953\",\"name\":\"What happens if Coinbase is hacked?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"It is crucial to act right away if your Coinbase account is hacked and you find that money has been taken out without your permission. To start an investigation into the situation, get in touch with your local law enforcement agency. Make sure the law enforcement officials speak with Coinbase directly as well, as the firm is committed to working closely with any legal inquiries regarding their platform.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442458295\",\"position\":3,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442458295\",\"name\":\"Is it safe to leave money on Coinbase?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"In general, leaving money in your Coinbase account is considered safe. Yet, there is always a chance that your personal information could be hacked, thereby allowing unwanted access to your account, as with any online site. To avoid this risk, it is vital to keep your password safe or have basic knowledge of cyber threats.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442492276\",\"position\":4,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442492276\",\"name\":\"How Can Attacks Like Coinbase Breach Be Prevented?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"Security awareness training can be an effective weapon in the fight against social engineering attacks which was faced by Coinbase. Organizations can assist prevent breaches brought on by human error or neglect by educating and training personnel on the best cybersecurity practices and data protection. This training can assist people in identifying and rejecting any spoofed SMS text messages. Hence, organizations should incorporate smishing awareness and simulation training programs. CISOs can take the help of <strong>Threatcop Security Awareness Training (<a href=\\\"https:\\\/\\\/threatcop.com\\\/threatcop-security-awareness-training\\\">TSAT<\\\/a>),<\\\/strong> which includes a smishing simulation element and an<strong> innovative learning management system (<a href=\\\"https:\\\/\\\/threatcop.com\\\/threatcop-learning-management-system\\\">TLMS<\\\/a>)<\\\/strong>.\u00a0\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442517586\",\"position\":5,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442517586\",\"name\":\"What is the Importance of Smishing Simulation and Awareness Training?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"Smishing is made of two words SMS+Phishing. It remains one of the most common and effective methods used by cybercriminals to trick individuals into revealing sensitive information. Smishing simulation and awareness training help people recognize and respond appropriately to these threats. Smishing awareness is important for organizations as employees can be vulnerable links.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"},{\"@type\":\"Question\",\"@id\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442558916\",\"position\":6,\"url\":\"https:\\\/\\\/threatcop.com\\\/blog\\\/coinbase-data-breach\\\/#faq-question-1685442558916\",\"name\":\"Is there any reliable Smishing Simulation Tool Available?\",\"answerCount\":1,\"acceptedAnswer\":{\"@type\":\"Answer\",\"text\":\"Yes, there are reliable smishing simulation tools available, and one such tool is the \\\"<a href=\\\"https:\\\/\\\/threatcop.com\\\/smishing-awareness-and-simulation\\\"><strong>Smishing Awareness Training<\\\/strong><\\\/a>\\\" offered by Threatcop<a href=\\\"https:\\\/\\\/threatcop.com\\\/\\\">.<\\\/a> These tools are important for organizations as they allow them to simulate realistic smishing attacks, test the awareness and response of their employees, and identify vulnerabilities in their security systems. The Smishing Awareness Training tool by <strong><a href=\\\"https:\\\/\\\/threatcop.com\\\/\\\">Threatcop<\\\/a><\\\/strong> specifically focuses on educating individuals about smishing threats, training them to recognize and respond appropriately, and reinforcing a culture of cybersecurity within the organization.\",\"inLanguage\":\"en-US\"},\"inLanguage\":\"en-US\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"How Employee Unawareness Led to Coinbase Data Breach?","description":"In this blog, we will get you down to the details of the coinbase data breach and discuss the importance of prioritizing cyber security.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/","og_locale":"en_US","og_type":"article","og_title":"How Employee Unawareness Led to Coinbase Data Breach?","og_description":"In this blog, we will get you down to the details of the coinbase data breach and discuss the importance of prioritizing cyber security.","og_url":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/","og_site_name":"Threatcop","article_publisher":"https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/","article_published_time":"2023-05-30T12:17:58+00:00","article_modified_time":"2026-04-16T07:32:17+00:00","og_image":[{"width":600,"height":576,"url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/Coinbase-data-breach.jpg","type":"image\/jpeg"}],"author":"Sanjana Kumari","twitter_card":"summary_large_image","twitter_creator":"@threatcop","twitter_site":"@threatcop","twitter_misc":{"Written by":"Sanjana Kumari","Est. reading time":"37 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#article","isPartOf":{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/"},"author":{"name":"Sanjana Kumari","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/person\/2703154c3efcd8ecca1e4683c696888d"},"headline":"Coinbase Data Breach: The Role of Employee Unawareness","datePublished":"2023-05-30T12:17:58+00:00","dateModified":"2026-04-16T07:32:17+00:00","mainEntityOfPage":{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/"},"wordCount":2512,"commentCount":0,"publisher":{"@id":"https:\/\/threatcop.com\/blog\/#organization"},"image":{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#primaryimage"},"thumbnailUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/Coinbase-data-breach.jpg","articleSection":["Cybersecurity Awareness"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#respond"]}]},{"@type":["WebPage","FAQPage"],"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/","url":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/","name":"How Employee Unawareness Led to Coinbase Data Breach?","isPartOf":{"@id":"https:\/\/threatcop.com\/blog\/#website"},"primaryImageOfPage":{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#primaryimage"},"image":{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#primaryimage"},"thumbnailUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/Coinbase-data-breach.jpg","datePublished":"2023-05-30T12:17:58+00:00","dateModified":"2026-04-16T07:32:17+00:00","description":"In this blog, we will get you down to the details of the coinbase data breach and discuss the importance of prioritizing cyber security.","breadcrumb":{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#breadcrumb"},"mainEntity":[{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685441183116"},{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442372953"},{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442458295"},{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442492276"},{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442517586"},{"@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442558916"}],"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/threatcop.com\/blog\/coinbase-data-breach\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#primaryimage","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/Coinbase-data-breach.jpg","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/05\/Coinbase-data-breach.jpg","width":600,"height":576,"caption":"Coinbase attack"},{"@type":"BreadcrumbList","@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/threatcop.com\/blog\/"},{"@type":"ListItem","position":2,"name":"Coinbase Data Breach: The Role of Employee Unawareness"}]},{"@type":"WebSite","@id":"https:\/\/threatcop.com\/blog\/#website","url":"https:\/\/threatcop.com\/blog\/","name":"Threatcop","description":"Cybersecurity Blogs, News, Updates, and Articles","publisher":{"@id":"https:\/\/threatcop.com\/blog\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/threatcop.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/threatcop.com\/blog\/#organization","name":"Threatcop","url":"https:\/\/threatcop.com\/blog\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/logo\/image\/","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/03\/cropped-original-logo-TC.png","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2022\/03\/cropped-original-logo-TC.png","width":951,"height":228,"caption":"Threatcop"},"image":{"@id":"https:\/\/threatcop.com\/blog\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/people\/Threatcop\/100083109892339\/","https:\/\/x.com\/threatcop","https:\/\/www.linkedin.com\/company\/threatcop\/","https:\/\/www.instagram.com\/threatcop_official\/"]},{"@type":"Person","@id":"https:\/\/threatcop.com\/blog\/#\/schema\/person\/2703154c3efcd8ecca1e4683c696888d","name":"Sanjana Kumari","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/10\/avatar_user_4_1696400016.png","url":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/10\/avatar_user_4_1696400016.png","contentUrl":"https:\/\/threatcop.com\/blog\/wp-content\/uploads\/2023\/10\/avatar_user_4_1696400016.png","caption":"Sanjana Kumari"},"description":"Security Compliance Executive Department: Compliance, Threatcop Sanjana is a Security Compliance Executive working on best-of-the-industry-level compliances relevant from a cybersecurity perspective, their implementation, learning and outcomes in various business domains."},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685441183116","position":1,"url":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685441183116","name":"Who is the threat actor for the Coinbase data breach?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"According to Coinbase, the attack was most likely carried out by 0ktapus. They are highly skilled cybercriminals that also target Twillio, Cloudflare, and at least 130 other companies with identical spoofed SMS-based text messages.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442372953","position":2,"url":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442372953","name":"What happens if Coinbase is hacked?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"It is crucial to act right away if your Coinbase account is hacked and you find that money has been taken out without your permission. To start an investigation into the situation, get in touch with your local law enforcement agency. Make sure the law enforcement officials speak with Coinbase directly as well, as the firm is committed to working closely with any legal inquiries regarding their platform.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442458295","position":3,"url":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442458295","name":"Is it safe to leave money on Coinbase?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"In general, leaving money in your Coinbase account is considered safe. Yet, there is always a chance that your personal information could be hacked, thereby allowing unwanted access to your account, as with any online site. To avoid this risk, it is vital to keep your password safe or have basic knowledge of cyber threats.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442492276","position":4,"url":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442492276","name":"How Can Attacks Like Coinbase Breach Be Prevented?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"Security awareness training can be an effective weapon in the fight against social engineering attacks which was faced by Coinbase. Organizations can assist prevent breaches brought on by human error or neglect by educating and training personnel on the best cybersecurity practices and data protection. This training can assist people in identifying and rejecting any spoofed SMS text messages. Hence, organizations should incorporate smishing awareness and simulation training programs. CISOs can take the help of <strong>Threatcop Security Awareness Training (<a href=\"https:\/\/threatcop.com\/threatcop-security-awareness-training\">TSAT<\/a>),<\/strong> which includes a smishing simulation element and an<strong> innovative learning management system (<a href=\"https:\/\/threatcop.com\/threatcop-learning-management-system\">TLMS<\/a>)<\/strong>.\u00a0","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442517586","position":5,"url":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442517586","name":"What is the Importance of Smishing Simulation and Awareness Training?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"Smishing is made of two words SMS+Phishing. It remains one of the most common and effective methods used by cybercriminals to trick individuals into revealing sensitive information. Smishing simulation and awareness training help people recognize and respond appropriately to these threats. Smishing awareness is important for organizations as employees can be vulnerable links.","inLanguage":"en-US"},"inLanguage":"en-US"},{"@type":"Question","@id":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442558916","position":6,"url":"https:\/\/threatcop.com\/blog\/coinbase-data-breach\/#faq-question-1685442558916","name":"Is there any reliable Smishing Simulation Tool Available?","answerCount":1,"acceptedAnswer":{"@type":"Answer","text":"Yes, there are reliable smishing simulation tools available, and one such tool is the \"<a href=\"https:\/\/threatcop.com\/smishing-awareness-and-simulation\"><strong>Smishing Awareness Training<\/strong><\/a>\" offered by Threatcop<a href=\"https:\/\/threatcop.com\/\">.<\/a> These tools are important for organizations as they allow them to simulate realistic smishing attacks, test the awareness and response of their employees, and identify vulnerabilities in their security systems. The Smishing Awareness Training tool by <strong><a href=\"https:\/\/threatcop.com\/\">Threatcop<\/a><\/strong> specifically focuses on educating individuals about smishing threats, training them to recognize and respond appropriately, and reinforcing a culture of cybersecurity within the organization.","inLanguage":"en-US"},"inLanguage":"en-US"}]}},"_links":{"self":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/9064","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/comments?post=9064"}],"version-history":[{"count":20,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/9064\/revisions"}],"predecessor-version":[{"id":11608,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/posts\/9064\/revisions\/11608"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/media\/9079"}],"wp:attachment":[{"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/media?parent=9064"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/categories?post=9064"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/threatcop.com\/blog\/wp-json\/wp\/v2\/tags?post=9064"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}