Futures
Access hundreds of perpetual contracts
TradFi
Gold
One platform for global traditional assets
Options
Hot
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Introduction to Futures Trading
Learn the basics of futures trading
Futures Events
Join events to earn rewards
Demo Trading
Use virtual funds to practice risk-free trading
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Pre-IPOs
Unlock full access to global stock IPOs
Alpha Points
Trade on-chain assets and earn airdrops
Futures Points
Earn futures points and claim airdrop rewards
Ongoing data breach case at a compliant platform: first suspect arrested, $300 million compensation cost warns the industry
【CryptoWorld】A compliant platform has experienced a severe data breach that continues to unfold. On December 29, Indian police arrested a former customer service staff member of the platform, marking the first confirmed arrest in this case.
The root cause points to internal corruption. Investigations reveal that hackers bribed overseas customer service personnel to gain system access, enabling them to steal user privacy on a large scale. The leaked data of 69,461 users includes names, addresses, phone numbers, emails, and even government-issued IDs—enough for identity theft or further scams.
Ransom negotiations ended in failure. The attackers initially demanded $20 million, which the platform decisively refused. Instead, they set up a reward program offering an equivalent bounty to track down the masterminds behind the attack. While this firm stance demonstrates resolve, it also indicates that the severity of the issue exceeds expectations.
The financial cost is staggering. Second-quarter financial reports show that this incident has resulted in $307 million in expenses—covering victim compensation, legal fees, and security infrastructure upgrades. Additionally, a class-action lawsuit has been filed against the platform, accusing it of failing to disclose the risks in a timely manner, leading to investor losses.
This incident serves as a warning to exchange operations: security management of customer service staff and risk control of overseas teams—often overlooked—are actually the weakest links in the security defense. International law enforcement agencies are still deepening their investigations, and industry experts expect more arrests to follow.
---
300 million USD... is this the so-called "compliance" cost, haha
---
Bribing customer service to change permissions, this trick is really too low-level, how are there still people doing this
---
I just want to ask how many platforms still have customer service like this... is our data safe
---
Refusing ransom and instead offering rewards for capture, this is a good tactic, at least the attitude is firm
---
69,461 identities... is it possible that mine is also included
---
Another insider... when will exchanges be able to properly manage their employees
---
Wait, isn't this platform supposed to be the most compliant? Yet it still had a failure, feels like no one can be trusted
---
3.07 billion in expenses... I can't afford to lose, everyone
---
Customer service being bribed is just unbelievable, is the salary really that low, is it worth taking such big risks
---
3 billion yuan, just for one customer service representative's greed, is this worth it?
---
Data of over 60,000 people has been leaked, including ID documents... Someone is bound to get into trouble this time.
---
Refusing ransom and offering rewards, quite ruthless, but it seems they had no choice but to do so under pressure.
---
Once again, insiders causing trouble; why can’t any platform prevent their own people from doing this?
---
$300 million in tuition fees, the industry should wake up now.
---
Bribing overseas customer service? How difficult would it be to prevent this trick...
---
Honestly, seeing this news is a bit frightening; is our data safe?
---
They’ve involved Indian police, there are probably more stories behind this.
---
3 billion dollars just gone like that, oh my god, this is true blood loss.
---
Disclosed personal information of 69,461 people—how many are going to be scammed? The social engineering database is going to increase in price again.
---
Refusing a 20 million ransom and then offering a reward—this move is bold, but I don't know if it will work.
---
Even compliant platforms can't prevent insiders; what does that say? Trustworthy really can't be relied on.
---
Indian police are quite quick, but this is just the tip of the iceberg.
---
Names, addresses, ID cards—all there—this is a complete scam toolkit.
---
I just want to know how much that bribed customer service took; it definitely wasn't 300 million.