Kraken Cryptocurrency Exchange Hit by Insider Breach and Extorted by Hackers

Kraken Cryptocurrency Exchange Faces Extortion Attempt After Insider Breach

The renowned Kraken cryptocurrency exchange has recently disclosed a distressing situation where a cybercrime group is attempting to extort the company by threatening to expose videos showcasing internal systems that house sensitive client data.

Assuring the safety of client funds, Kraken’s Chief Security Officer, Nick Percoco, revealed that the breach was the result of an insider threat, involving two support employees gaining unauthorized access to limited customer data.

Despite the alarming situation, Kraken has taken a firm stance against negotiation or compliance with the threat actors’ demands.

Expressing the gravity of the situation, Percoco stated, “We are currently being extorted by a criminal group threatening to release videos of our internal systems with client data shown if we do not comply with their demands.”

Emphasizing the company’s commitment to integrity, he added, “Our systems were never breached; funds were never at risk; we will not pay these criminals; we will not ever negotiate with bad actors.”

Operating as a U.S.-based cryptocurrency exchange, Kraken facilitates transactions for millions of users across 190 countries, enabling the buying, selling, and trading of various digital assets, including Bitcoin, Ethereum, and over 200 others.

Recognized as one of the largest and most reputable exchanges in the industry, Kraken boasts a substantial daily trading volume amounting to hundreds of millions of U.S. dollars.

Following a tip received in February 2025 regarding cybercriminals circulating a video illustrating access to client support systems, Kraken promptly initiated an investigation that uncovered a support employee colluding with the threat actor.

More recently, Kraken was alerted to another video demonstrating insider access to its systems, prompting swift action to revoke access, conduct thorough investigations, and enhance security protocols. Affected users were promptly notified of any potential exposure.

Addressing the extent of the breach, Percoco revealed that approximately 2,000 accounts, representing a mere 0.02% of Kraken’s user base, were affected. The compromised information primarily pertained to client support data for this small subset of users.

In a proactive approach to combat the extortion attempt, Kraken has amassed substantial evidence to pursue legal action against all involved individuals engaged in blackmail, collaborating closely with law enforcement agencies across multiple jurisdictions.

Highlighting the broader issue of insider threats and malicious recruitment within various industries, particularly the cryptocurrency sector, Percoco underscored the importance of vigilant security measures and prompt responses to such incidents.

Referencing a similar incident in mid-2025, where leading American cryptocurrency exchange Coinbase fell victim to a data breach after hackers bribed employees of an India-based customer support agency, resulting in compromised client support information and significant financial losses.