The hackers targeted employees of TaskUs, a US-based company that provides customer service support to major tech firms. TaskUs has a large presence in India, and its agents in Indore handled support for Coinbase since 2017. In January, TaskUs laid off over 200 Indian staff working for Coinbase – just weeks after the data theft was discovered.
TaskUs salaries in India are not high – often between $500 and $700 a month. Due to low salaries, some workers in India were persuaded to hand over confidential customer records in exchange for bribes. Coinbase confirmed it had cut ties with the individuals and other overseas agents involved.
“Obviously that’s the weakest point in the chain, because there is an economic reason for them to accept the bribe,” Sergio Garcia, founder of the crypto investigations company Tracelon, told Fortune.
The stolen information wasn’t enough to access Coinbase’s crypto vaults directly. Instead, criminals used it to impersonate Coinbase staff and trick customers into giving up their crypto assets. These social engineering scams led to real financial losses, though Coinbase hasn’t revealed how many customers lost funds. The company says it is reimbursing affected users.
A class action lawsuit has been filed in New York, accusing TaskUs of negligence. The company insists the claims are baseless and says it’s strengthening its security measures. TaskUs believes two agents were part of a broader scheme involving attacks on multiple service providers linked to Coinbase.
The hackers are believed to be part of a loosely connected group known as “the Comm” or “Community” -- young, English-speaking cybercriminals who coordinate through Telegram and Discord. Unlike traditional hacking groups from Russia or North Korea, the Comm includes thrill-seeking teenagers and young adults who often compete for attention and success online.
According to a hacker who spoke with Fortune under the alias “puffy party,” different members of the group handled different parts of the operation: bribing agents, collecting data, and carrying out scams.
免责声明:投资有风险,本文并非投资建议,以上内容不应被视为任何金融产品的购买或出售要约、建议或邀请,作者或其他用户的任何相关讨论、评论或帖子也不应被视为此类内容。本文仅供一般参考,不考虑您的个人投资目标、财务状况或需求。TTM对信息的准确性和完整性不承担任何责任或保证,投资者应自行研究并在投资前寻求专业建议。