Former Support Agent Arrested in Major Exchange Data Breach Case

Source: CryptoTale Original Title: India Arrests Former Coinbase Agent in $400M Breach Case Original Link: https://cryptotale.org/india-arrests-former-coinbase-agent-in-400m-breach-case/

Overview

• Indian police arrested a former support agent linked to a $400 million data breach at a major exchange.
• Hackers bribed overseas staff to access customer data, excluding passwords.
• The exchange is working with Indian and U.S. authorities as the multi-country probe expands.

Arrest and Investigation Progress

Indian police have arrested a former customer service agent tied to the $400 million data breach, marking a key step in a global investigation. The arrest follows months of cooperation between the exchange and law enforcement agencies. Officials say the suspect helped hackers access customer records by abusing internal support systems.

The arrest was confirmed in a public statement, with praise directed toward the Hyderabad Police for their work on the case. Company leadership stated they have zero tolerance for internal misconduct and will continue supporting investigations until all responsible parties are identified.

Breach Details and Attack Method

The case stems from a data breach disclosed earlier this year. Hackers gained access to customer information by bribing overseas employees and contractors.

The compromised data included names, home addresses, and email addresses. Importantly, passwords, private keys, and login credentials were not accessed.

Investigators say the arrested individual worked in a customer support role connected to outsourced operations. Attackers specifically targeted support staff who had limited but direct access to customer data. These insiders were allegedly paid to extract information from internal systems. The method allowed hackers to bypass external security defenses.

Ransom Demand and Response

The breach became fully known in May 2025. After securing customer data, the attackers demanded a $20 million ransom, threatening to release the information if payment was not made. The exchange refused to comply and instead offered a $20 million reward for information leading to arrests.

The company later estimated the total financial impact of the breach at between $180 million and $400 million. This figure included customer reimbursements, investigation costs, and system upgrades. Early warning signs of suspicious activity appeared as early as January.

Multi-Jurisdiction Investigation

The arrest was part of a joint effort involving multiple jurisdictions. The exchange confirmed it has worked closely with Indian authorities and U.S. prosecutors. The Brooklyn District Attorney’s Office is among the agencies involved. Officials said further arrests remain possible as investigations continue.

The case highlights wider security risks across the crypto industry. In February, a rival exchange reported a separate attack causing losses of about $1.5 billion. Blockchain analytics firms reported approximately $3.4 billion in total crypto hack losses during 2025.