Threat Actors Claim Responsibility Over Coin Cloud Breach
Bankrupt Bitcoin ATM Firm Coin Cloud has reportedly been breached by a yet unidentified hacking group.
According to reports from vx-underground, an information security researcher who first disclosed the breach over X, the threat actors claim to have exploited Coin Cloud’s database and retrieved some 70,000 customer selfies as well as personal information from over 300,000 users, which includes sets such as Social Security numbers, names, addresses, birth dates, occupations, and phone numbers.
Notably, the threat actors also claim to have obtained the source code for Coin Cloud’s backend system.
The breach’s severity is highlighted by the publication of redacted images purportedly showing the accessed customer data. Vx-underground says that the claims were initially shared via private, encrypted channels, with indications of the compromised database soon becoming available publicly.
An unknown Threat Actor(s) claim to have compromised Coin Cloud.
They allege to have exfiltrated 70,000 customer selfies (via ATM cameras), and 300,000 customers PII which includes Social Security Number, Date of Birth, First Name, Last Name, e-mail address, Telephone Number,… pic.twitter.com/TJ7RUK18Yq
— vx-underground (@vxunderground) November 12, 2023
Coin Cloud’s susceptibility to this cybersecurity incident comes in the wake of its bankruptcy filing in February 2023. The Bitcoin ATM firm, which operated roughly 4,000 across the U.S. and Brazil, faced significant business and legal challenges, culminating in losses of $40 million within the first nine months of 2022.
These developments on the firm’s financial status were first reported by Chris McAlary, Coin Cloud’s former CEO, to the . Coin Cloud has also confirmed that it currently owes $116 million with plans to find new financing or sell off its Bitcoin ATM business through the Chapter 11 bankruptcy filing. is a subsidiary business of bankrupt lending arm. Previous reports from Bloomberg in 2022 indicate that Coin Cloud also received a $100 million unsecured loan from Genesis for its restructuring plans.
At the time of writing, Coin Cloud has not issued a public comment regarding the breach. The situation remains under scrutiny, with potential implications for the broader in terms of and operational stability.