Cryptocurrency trade Coinbase stated Thursday cyber criminals stole buyer knowledge and demanded a $20 million fee from the corporate to not publicly launch the delicate info.

The group of cyber criminals allegedly persuaded a small group of buyer help brokers abroad to repeat knowledge from its buyer help instruments in trade for money, Coinbase introduced in a weblog publish Thursday.

The criminals hoped to make use of the info to contact clients and trick them into giving their crypto, the trade alleged.

Coinbase, the nation’s largest cryptocurrency trade, rejected the $20 million ransom.

“Instead of paying this $20 million ransom, we’re turning it around. And we’re putting out a $20 million award for any information leading to the arrest and conviction of these attackers,” Coinbase CEO Brian Armstrong stated in a video posted to X Thursday. “For these would-be extortionists or anyone seeking to harm Coinbase customers, know that we will prosecute you and bring you to justice.”

Lower than 1 % of buyer knowledge was stolen however included customers’ names, addresses, telephone numbers, emails, authorities ID pictures, and account knowledge. In addition they obtained the final 4 digits of customers’ social safety numbers and masked checking account numbers, however didn’t achieve entry to customers’ login credentials, non-public keys and didn’t have the power to maneuver or entry funds.

“Attackers still want access to this information because it allows them to conduct social engineering attacks where they can call our customers impersonating Coinbase customer support and try to trick them into sending their funds to the attacker,” Armstrong stated.

Clients who had been manipulated by the criminals can be reimbursed and flagged accounts can have further ID checks on giant withdrawals, Coinbase stated.

In a submitting with the Securities and Change Fee (SEC), Coinbase estimated the corporate must spend between $180 million to $400 million between the remediation prices and voluntary buyer reimbursements.