Kraken Rejects Extortion Demands Following Client Data Leak

Kraken has announced it will not negotiate with an unnamed criminal organization attempting to extort the exchange. The group threatened to release footage of internal systems that included sensitive client information, seeking an unspecified sum of money in exchange for the data's silence. Chief Security Officer Nick Percoco confirmed the attempt via social media, emphasizing that the company's core systems were never breached and that customer funds are not at risk. The incident underscores the ongoing cybersecurity challenges facing centralized exchanges as they continue to expand their global footprint. According to Percoco, the exchange identified two separate incidents of 'inappropriate access' to client data—one occurring in February 2025 and another more recently. These events collectively affected roughly 2,000 user accounts. Kraken is currently collaborating with federal law enforcement to investigate the group, with the goal of securing arrests. This event follows a pattern of targeted attacks on the industry. In May 2025, Coinbase reported a similar extortion attempt involving 70,000 users and a $20 million demand, which was attributed to bribes paid to customer support contractors. Broader industry data from blockchain intelligence firm Nominis indicates a significant spike in crypto-related losses. Total losses reached $178 million in March 2026, a sharp increase from $49.3 million in February. The report identifies authorization abuse as the primary attack vector, where victims unknowingly grant hackers direct access to their funds.