2 hours ago
763
Cryptocurrency exchange Kraken was recently embroiled in an extortion scheme after two former employees reportedly mishandled access to customer information. The perpetrators threatened to disseminate videos purportedly from Kraken’s internal systems unless their demands were met.
How Did Kraken Handle the Breach?
Kraken, headquartered in Wyoming, USA, swiftly cut off access for the individuals entangled in the incidents. The exchange promptly implemented new security protocols and informed impacted customers of the potential exposure.
The breach first came to light in February 2025, following reports of a video surfacing on a criminal forum. In response, Kraken withdrew the offending employee’s access and fortified their security measures.
A parallel incident occurred recently, and Kraken again acted decisively by removing the implicated individual’s access and promptly notifying any users potentially affected, demonstrating their robust incident response.
Why Are Crypto Platforms Being Targeted?
Cryptocurrency platforms are frequently targeted due to the high value and permanent nature of digital asset transfers. Instant transactions make these platforms tempting objectives for cybercriminals.
Flaws in smart contract designs, the handling of private keys, and the backend infrastructure of exchanges present vulnerabilities that hackers exploit. Moreover, social engineering and phishing remain prevalent attack methods targeting unsuspecting users.
Kraken disclosed that the criminals threatened to leak acquired materials through various media channels. The company remains steadfast against meeting any demands from the extortionists, maintaining their integrity against such threats.
“Our systems were never breached; client funds were never at risk; we will not pay these criminals or negotiate with malicious actors,” Kraken stated to underline its position.
Consequently, Kraken’s scrutiny uncovered that these cyber actors are enlisting insiders across different sectors, not just in crypto but also in gaming and telecommunications. The exchange is working alongside industry peers to trace the culprits and is optimistic about making strides in the investigation.
In parallel, Galaxy Digital, involved in institutional crypto services, announced it had thwarted unauthorized access within a segregated development zone, assuring clients that no user data or funds were jeopardized during the incident.
Disclaimer: The information contained in this article does not constitute investment advice. Investors should be aware that cryptocurrencies carry high volatility and therefore risk, and should conduct their own research.
English (US)