Law firm Greenbaum Olbrant has filed an updated lawsuit regarding the 2024 hack of the cryptocurrency exchange Coinbase, which resulted in the theft of data from thousands of the platform’s clients. The complaint reveals new details of the incident.
It was previously revealed that the leak involved bribery of employees of the international outsourcing company TaskUS, which provided customer support and moderation services for the exchange. The new document revealed the name of the alleged collusion participant: Ashita Mishra, an employee of the TaskUS service center in Indore, India.
According to the lawsuit, from September 2024 to January 2025, she and her accomplices stole confidential customer data, including Social Security numbers and bank account information. Mishra then sold the information to hackers, who impersonated Coinbase employees and defrauded the victims of cryptocurrency.
According to the case documents, even team leaders and operations managers were involved in the conspiracy. They received $200 for a photo of Coinbase client data. When TaskUs learned of the leak, Mishra’s phone contained information on more than 10,000 Coinbase clients.
In total, over 69,000 people, representing less than 1% of its active users, were affected by the leak, Coinbase previously reported. The exchange estimated the cost of resolving the incident and providing compensation at $400 million.
According to Fortune magazine, the alleged masterminds behind the scheme were members of a loose hacker community called The Comm.
In a comment to the publication following the publication of the new lawsuit, a Coinbase representative stated that the exchange had terminated its partnership with TaskUs:
“We immediately notified affected users and regulators, compensated for damages, and tightened controls over suppliers and insider information. We refused to pay the perpetrators and instead offered a $20 million reward for information leading to arrests and convictions.”
Greenbaum Olbrant’s lawyers emphasized that TaskUs “took steps to silence those who knew about the breach.” In January, the outsourcer fired 226 employees based in Indore. The company took this extreme measure because it “could not identify all those involved,” the complaint states, citing a former employee of the outsourcer.
In May, Bloomberg reported that Binance and Kraken had successfully countered the social engineering attacks that affected Coinbase.
Источник: cryptocurrency.tech
Your email address will not be published. Required fields are marked *