The fallout from one of crypto’s biggest security breaches has now gone global.
Coinbase CEO Brian Armstrong confirmed that a former customer support agent was arrested in India after being linked to a major data breach at the exchange. The case goes back several months, when hackers bribed support staff to get access to sensitive customer information at Coinbase, the largest crypto exchange in the U.S.
According to Coinbase, attackers paid employees or contractors working outside the United States to steal customer data. After that, the hackers tried to extort the company, demanding $20 million to keep the stolen information from being misused. Coinbase revealed the breach back in May and warned it could cost up to $400 million to fix — making it one of the most expensive security incidents in crypto history.
A Coinbase spokesperson confirmed the arrest and said it happened after close cooperation with U.S. law enforcement, including the Brooklyn District Attorney’s Office. In a related case, prosecutors also charged a man in Brooklyn who allegedly ran a long-term impersonation scam that targeted Coinbase customers. That case shows how stolen data can keep causing damage long after the original breach happens.
The incident shines a spotlight on a weak point many crypto platforms still struggle with: human access. Even with strong technical security, attackers are increasingly going after customer support staff, especially when those roles are outsourced overseas. It’s often easier to bribe a person than to break through code.
Investors reacted cautiously. Coinbase shares slipped about 1.2% on Friday, bringing the stock’s total decline for the year to around 4.6%. While the market didn’t panic, the message was clear — security risks still matter.
As crypto companies push toward mainstream adoption, this case is a reminder that protecting customer data isn’t just about technology. It’s also about people, processes, and strict oversight of anyone who has access behind the scenes.
