Court documents: Coinbase data breach suspect's phone contained over 10,000 customer details

PANews reported on September 17th that, according to Fortune magazine, an amended indictment filed Tuesday by the class action law firm Greenbaum Olbrantz reveals that Ashita Mishra, a former employee of the outsourcing firm TaskUs and a key suspect in the Coinbase data breach, stored sensitive information on her phone for over 10,000 customers. Starting in September 2024, she systematically stole confidential data such as social security numbers and bank account numbers, selling it to hacker groups for $200 per screenshot. Mishra and her accomplices established a "sophisticated, convergent network" in India, taking 200 screenshots of customer accounts daily, impacting 69,000 users. Hackers used this to defraud users of cryptocurrency, resulting in losses of up to $400 million. TaskUs recently accused Coinbase employees of involvement in the breach, but has offered no concrete evidence. A Coinbase spokesperson stated that it has terminated its partnership with TaskUs, strengthened oversight, and fully compensated users. It also previously offered a $20 million bounty fund to track down the perpetrators. TaskUs stated that it is continuously strengthening its security protocols and training and declined to comment on the indictment.