Coinbase Hit by Cyberattack Amidst Rising Retail Breaches

On May 13, 2025, the cybersecurity landscape was rocked by significant incidents involving Coinbase and Marks & Spencer. Coinbase reported a cyberattack where attackers bribed customer support agents in India, compromising access to customer data. In response, the company announced a $20 million reward for information leading to the culprits' arrest, as the financial impact of this breach could range from $180 million to $400 million. Thankfully, no passwords or private keys were compromised, but the incident raises concerns about insider threats and the security of customer data.

Meanwhile, UK retailer Marks & Spencer experienced a serious data breach, losing sensitive customer and employee information, including emails and personal details. This attack is attributed to the Scattered Spider hacking group, which has been targeting UK retailers in recent months. The need for robust cybersecurity measures has never been more urgent.

In addition to these breaches, the U.S. Cybersecurity and Infrastructure Security Agency (CISA) reported critical vulnerabilities in SolarWinds and Ivanti products, with CVSS scores as high as 9.8. These vulnerabilities are being actively exploited, emphasizing the need for immediate action to patch affected systems to prevent further incidents.

These developments underscore the ongoing challenges organizations face in safeguarding sensitive information against increasingly sophisticated cyber threats.