Crypto.com exchange is at the heart of a new cybersecurity affair. According to Bloomberg, an attack by a teenager and his accomplice would have made it possible to disclose personal user data. An episode all the more disturbing since the platform would have chosen to pass this flaw in silence.
In short
- A teenager and his accomplice infiltrated the account of a crypto.com employee.
- The personal data of a small number of users have been exposed.
- Crypto.com did not publicly communicate on the incident, which feeds criticism.
A targeted attack and passed over in silence
According to a report by Bloomberg Businessweek, a teenager affiliated with the “Scattered Spider” cybercriminals group, supported by an accomplice, managed to hack the account of an Employee of Exchange Crypto.com at the beginning of 2023. This intrusion, which has been in silence, made it possible to access the personal data of several customers.
The platform tried to minimize the incident. A spokesman said that only “a handful of individuals” had been assigned and that no funds had been stolen. However, this lack of official communication raises questions.
In a sector where users' confidence is based above all on transparency, silencing a security fault amounts to weakening its own reputation.
The case has resurfaced After the arrest of Noah Urban, the young pirate involved, sentenced for ten years in prison for ten years. During a raid, the FBI had already seized several million dollars in cryptocurrencies, as well as jewelry and species.
This sequence highlights the growing sophistication of cyber attacks targeting exchange platforms, which often exploit their employees as a gateway.
Crypto.com, an isolated case or symptom of a structural problem?
This episode is part of a broader trend. Coinbase has also been recently struck by a major attack, involving nearly $ 400 million and exhibiting sensitive data.
In both cases, the scheme is identical: the pirates do not attack systems directly, but exploit the internal teams, often considered as the weak link in a security chain, however saturated with protocols and firewalls.
These attacks highlight two essential realities:
- Cybercriminals now favor social engineering and corruption of agents rather than frontal technical assaults.
- Centralized platforms like Crypto.com or Coinbase remain vulnerable by nature, because they concentrate both capital and sensitive data.
Timing still complicates the situation for Crypto.com. In August, the platform exceeded Coinbase in volume of exchanges, confirming its rise in power. She also got closer to Trump Media to create a digital asset cash company. But the more the company grows, the more it becomes a privileged target for hackers.
The incident, even circumscribed, must therefore be perceived as a serious warning. The lack of transparency around the flaw tarnishes the image of an exchange however in full ascent.
In a context marked by the resurgence of attacks and by increased regulatory monitoring, platforms have only one way: to invest massively in cybersecurity and play the total transparency card.
Because on the crypto market, confidence is constructed slowly, but can collapse in an instant. The slightest non -assumed flaw may cost much more than the loss of some data.
The sad record of the first quarter of 2025, with $ 1.63 billion stolen, is radiant proof. The crypto sector faces an incessant wave of cyber attacks, and only transparency can strengthen both the credibility of the exchanges and the resilience of the entire ecosystem.
Maximize your Cointribne experience with our 'Read to Earn' program! For each article you read, earn points and access exclusive rewards. Sign up now and start accumulating advantages.
