A data breach involving customer information, coupled with an ongoing SEC investigation into potentially misleading user statistics from 2021, led to a sharp market response.

Shares Slide 7% Amid Rising Concerns

On the evening of May 15, Coinbase stock dropped by 7%, falling to $244 in after-hours trading. Two simultaneous developments triggered this decline:

1. An investigation by the Securities and Exchange Commission (SEC) into Coinbase’s previous claim of having over 100 million “verified users” in 2021.
2. A serious data breach caused by compromised third-party support staff.

The SEC has questioned the accuracy of these user metrics as part of a probe that began during the Biden administration. Coinbase stopped reporting the metric in 2022, opting instead to disclose “monthly transacting users,” which it deems more relevant.

You Might Be Interested In: Elon Musk Talks About the Name of a New Memecoin!

Chief Legal Officer Paul Grewal stated that while Coinbase disagrees with the continuation of the investigation, it will fully cooperate with the SEC to bring it to a close.

Ransom Refused, Compensation Expected

In a separate incident, Coinbase revealed that attackers used internal support access to leak data from a limited number of accounts. The attackers demanded a $20 million ransom, which Coinbase firmly refused to pay.

However, the company pledged to compensate affected users, estimating total remediation costs to range between $180 million and $400 million.

You can also freely share your thoughts and comments about the topic in the comment section. Additionally, don’t forget to follow us on our Telegram, YouTube, and Twitter channels for the latest news and updates.

The post Coinbase Hit By Data Breach And SEC Probe, Stock Falls 7% appeared first on Coin Engineer.

Coinbase has promised compensation to all affected users. The company will also cover losses for users deceived by social engineering attacks during this process, aiming to maintain user trust. Additionally, Coinbase created a $20 million reward fund to incentivize information leading to the identification of the attackers. The crypto exchange has started implementing new security measures to prevent user harm. 

Coinbase Cyber Attack

In a clear stance shared on X , Coinbase CEO Brian Armstrong stated: 

“We will not pay ransom to extortionists. Instead, we offer a $20 million reward to those who provide information leading to the identification and prosecution of the perpetrators.” 

Following the attack, Coinbase increased its security measures. A new customer support center was established in the US, where identity verification and fraud awareness notifications became mandatory. Moreover, additional identity verification processes were added for high-value transactions. These steps aim to protect user accounts. The company also announced that it will provide regular updates to users in the coming days. 

The Method Behind the Attack 

The attackers attempted to infiltrate the system by bribing some customer representatives working abroad. Coinbase described this as an unusual and complex social engineering attack. However, the attackers did not gain access to sensitive systems. 

Coinbase estimates that less than 1% of users’ data was affected. Nevertheless, it warned customers to remain vigilant against potential fraud risks. This incident has once again highlighted the growing cyber threats in the crypto sector. Last year, India-based WazirX lost $230 million in a similar attack. Coinbase’s breach underscores the urgent need for data security and regulatory measures. 

Security at crypto exchanges has become not only a technological but also a strategic priority. Users should protect their accounts with two-factor authentication and strong passwords. 

You can also freely share your thoughts and comments about the topic in the comment section. Additionally, don’t forget to follow us on our Telegram, YouTube, and Twitter channels for the latest news and updates.

The post Coinbase Hit by Cyber Attack: CEO Sends Message of No Ransom appeared first on Coin Engineer.

Major Blow to LockBit 

LockBit targets companies and individuals with ransomware. This time, the gang itself was hacked. Its dark web panel was exposed, and 59,975 Bitcoin addresses along with victim negotiations were leaked. Furthermore, this data provides clues for tracking the gang’s money flow. 

Among the victims targeted by the group are Boeing, Royal Mail UK, ICBC, and Capital Health. The gang allows affiliates to use LockBit’s tools to carry out attacks and share the ransom with the developers. According to Chainalysis reports, Russia-linked gangs (e.g., Evil Corp) earned over $400 million in cryptocurrency from ransomware in 2021. Crypto firms, particularly decentralized finance (DeFi) platforms or small exchanges, are vulnerable to such attacks. 

The panel displays the message: “Don’t commit crimes, crime is bad, R from Prague xoxo,” along with a link to download the “paneldb_dump.zip” file. 

The leaked data includes Bitcoin wallet addresses and ransom negotiations. LockBit’s leader, “LockBitSupp,” claimed that the private keys are secure. However, experts are skeptical of this claim. On the other hand, the leaked information will make it easier for law enforcement to track the gang. The Bitcoin addresses put the gang’s revenue at risk. 

Cybersecurity Warning 

This incident revealed that cybercrime gangs are also vulnerable. Experts urge companies to protect themselves against ransomware. The leaked Bitcoin addresses could enhance cryptocurrency tracking. This situation underscores the importance of cybersecurity measures. 

The attack on LockBit is said to potentially reshape the cybercrime world. The leaked data puts the gang’s affiliates in a difficult position. Law enforcement and experts may be able to dismantle the gang by analyzing this information. Cybersecurity experts believe such incidents could foster greater collaboration. 

Lastly, it should be noted that more work is needed for security in the digital world.

You can also freely share your thoughts and comments about the topic in the comment section. Additionally, don’t forget to follow us on our Telegram, YouTube, and Twitter channels for the latest news and updates.

The post Cyber Strike on LockBit Gang: 60K Bitcoin Addresses Exposed  appeared first on Coin Engineer.

Whitelists can have different meanings depending on the context, as they are typically related to a specific service, event, or information.

What Is Whitelist?

In the cryptocurrency world, a whitelist refers to a list of approved individuals who have the right to participate in a particular event. This list may include participants for an Initial Coin Offering (ICO), Initial Exchange Offering (IEO), or approved withdrawal addresses on exchanges. The purpose of the whitelist is to ensure that only individuals who meet certain criteria are allowed to participate.

Participation often requires conditions such as having a specific amount of funds, a good account history, a referral code, or an invitation.

In the case of an ICO, the whitelist includes a list of registered and approved users who are granted the right to participate in the pre-sale or ICO. Some cryptocurrency projects may implement a whitelist phase for those looking to distribute their tokens to the public. This process allows projects to verify potential token buyers and ensure they comply with the token distribution requirements.

How Does a Whitelist Work?

Ransomware, phishing, and malware threats have become security risks that require attention in everyday life. To defend against such malicious software, personal security measures need to be enhanced. One such measure is the whitelist. But how does it work?

A whitelist is a list based on predefined strict rules and is managed under the control of an administrator. Administrators create a list that defines which sources, programs, and applications can be accessed by users. This list can be dynamically updated according to needs.

The list is applied to operating systems, network devices, or server software. This ensures that each incoming user request is monitored and checked to see if it matches the whitelist. If the request is on the whitelist, the user can proceed; however, if the request is not listed, the transaction is rejected.

Whitelist in the Context of NFTs

The use of a whitelist is not limited to ICOs and IEOs; it also plays an important role in the Non-Fungible Token (NFT) world. An NFT whitelist is a list of approved individuals who are authorized to participate in transactions in a specific NFT marketplace or sale. This list is typically managed by the entity releasing the NFT and is used to limit which individuals can buy or sell NFTs.

Whitelisting is applied to offer certain buyers priority or exclusive access to NFT sales or events.

Advantages of a Crypto Whitelist

There are several key benefits to being included in a crypto whitelist. First, it provides priority access to an ICO, IEO, or NFT sale. This can be a significant advantage, especially when the number of tokens or NFTs is limited.

Being on the whitelist can also provide an additional layer of security, particularly for withdrawal addresses. Allowing withdrawals only to whitelisted addresses can help enhance the security of your cryptocurrency transactions.

How to Join a Crypto Whitelist

Joining a crypto whitelist typically starts with providing your personal information, which may include your name, email address, and sometimes a government-issued ID. This information is used to verify your identity and confirm that you meet the participation requirements.

In the case of NFT whitelists, you may need to demonstrate active participation in the project, such as engaging with the project’s community or participating in community discussions.

Whitelist and Network Security

Whitelisting is also a common practice in network security, where IP addresses or domain names with access to specific files or systems are listed.

In the NFT context, the whitelist may include wallet addresses authorized to mint an NFT. The smart contracts of NFT collections check whether a wallet is on the whitelist, only allowing approved addresses to mint NFTs.

Also, in the comment section, you can freely share your comments and opinions about the topic. Additionally, don’t forget to follow us on Telegram, YouTube and Twitter for the latest news and updates.

The post What is a Whitelist? Cryptocurrency and NFT Terms appeared first on Coin Engineer.