Kraken Responds to Extortion Threats After Data Breach

In a striking turn of events, Kraken, one of the largest cryptocurrency exchanges in the United States, has taken a firm stance against extortion threats from a criminal organization. This comes after the exchange encountered two distinct cases of unauthorized access to sensitive client data over the past year, which reignited anxiety among investors regarding potential insider dangers.

Kraken Responds Strongly to Threats

Recently, Kraken’s Chief Security Officer (CSO), Nick Percoco, revealed that their company has been targeted by extortionists who claim to have evidence of vulnerabilities in Kraken’s systems affecting client data.

Kraken Responds to Extortion Threats After Data Breach

In an official security announcement, CSO Percoco confirmed that Kraken had successfully detected and mitigated two incidents of unauthorized access to specific client support data within the last year. The exchange received alerts regarding a video circulating on a criminal forum, which purportedly demonstrated unauthorized access to Kraken’s client support platform.

“Following the alert, we acted swiftly to launch an internal investigation and were able to identify an individual connected to our support team,” Percoco stated. “Immediate measures were taken to revoke access and initiate a comprehensive investigation, along with additional security protocols.”

A subsequent incident led to another investigation after a report indicated a new video showcasing similar unauthorized access, resulting in prompt termination of the suspect’s access and notification of potentially affected clients.

“Soon after severing access, we started receiving extortion demands,” the CSO highlighted. “These individuals threatened to disseminate incriminating materials from both incidents to various media platforms unless we complied with their requests.”

Percoco made it clear that Kraken’s systems had not been breached and asserted that client funds remained secure. He also disclosed that only a small fraction of client accounts—approximately 2,000 or just 0.02%—might have been exposed during the breaches.

Kraken has firmly rejected these extortion attempts, proclaiming that they “will not engage with criminals” and “refuse to negotiate with malicious parties.”

Additionally, the exchange has expressed its commitment to collaborating with law enforcement agencies and industry partners to investigate and thwart insider threats targeting not just crypto firms but also various sectors, including gaming and telecommunications.

Based on intelligence from both incidents, Kraken believes there is ample evidence to arrest the individuals involved. However, they did not disclose further details as the investigation remains ongoing. The exchange has encouraged anyone with relevant information to reach out directly.

This development follows Kraken’s recent achievement, marking a significant milestone for the crypto community as it became the first exchange to gain direct access to the Federal Reserve’s core payment infrastructure, having secured approval for a master account from the Kansas City Federal Reserve.

Crypto Community Expresses Concern Over Insider Access

In reaction to the incident, members of the crypto community and Kraken users voiced their apprehensions, seeking clarity on the specifics surrounding the two incidents and criticizing the practice of outsourcing customer support functions.

“It seems you’ve handed your security over to dubious third-party services or even worse, your own staff may be compromised, making your users susceptible to attacks,” a user on X remarked under Percoco’s announcement.

However, the specifics regarding whether the unauthorized data access stemmed from in-house team members or contracted overseas support staff have not been disclosed.

Another community member pushed back against Kraken’s remark about the limited number of clients affected. They suggested that the 2,000 accounts were likely high-value targets at greater risk of being exploited.

Some users also drew comparisons to the earlier Coinbase data breach, where CEO Brian Armstrong revealed in May 2025 that attackers had bribed overseas support contractors to infiltrate the company’s internal systems. This incident resulted in sensitive details of about 1% of the user base being leaked.

The subsequent blackmail attempt against Coinbase for $20 million in Bitcoin has since raised red flags regarding transparency and the risks posed by insider threats within the cryptocurrency landscape.

Emily Walker
Emily Walker
Crypto News Editor

Emily brings structure, clarity, and journalistic integrity to Bitrabo’s daily news coverage. With years of experience in tech journalism, she ensures that every headline, update, and developing story is accurate and impactful. From breaking regulatory news to market movements, Emily’s editorial oversight keeps Bitrabo’s news content timely, trusted, and engaging.