Alerta de Segurança: Listagem na Dark Web Afirma Ter Acesso ao Sistema de Suporte da Kraken

Um anúncio sinistro circula nos cantos mais obscuros da internet, prometendo acesso não autorizado ao coração operacional de uma das maiores exchanges de criptomoedas do mundo. A alegação, se verdadeira, representa uma falha crítica—uma porta dos fundos aberta para o suporte ao cliente da Kraken.

Ameaça nas Sombras

Não se trata de um simples vazamento de dados de usuários. A oferta na dark web sugere algo muito mais profundo e perigoso: controle sobre as ferramentas internas de suporte. Isso poderia permitir que atores mal-intencionados contornassem protocolos de segurança, visualizassem tickets confidenciais ou até mesmo iniciassem transações não autorizadas sob o disfarce de um agente de suporte legítimo. A infraestrutura que deveria ser um bastião de confiança se transforma, potencialmente, no próprio vetor de ataque.

O Preço da Confiança (e da Inércia)

O setor de cripto vive um paradoxo: prega a auto-soberania enquanto depende visceralmente da segurança de terceiros custodiantes. Incidentes como esse cutucam a ferida aberta da confiança. Cada brecha não é apenas um evento isolado; é um golpe no já frágil sentimento do mercado retail. Enquanto isso, os grandes players institucionais—aqueles com seus fundos de hedge e ETFs—dormem tranquilos, protegidos por camadas de seguros e due diligence que o investidor comum nem sonha em ter. A segurança, afinal, parece ser um produto com preço por atacado.

Um lembrete brutal de que, na corrida pela inovação financeira, a segurança operacional não pode ficar para trás. A próxima grande 'correção' do mercado pode não vir de um tweet, mas de uma falha em um sistema de tickets.

Kraken support access could expose customer info for 2 months

According to the listing, the access is reportedly not restricted by IP address, proxied through Kraken’s own systems. It can retrieve full know-your-customer (KYC) documents, including identification cards, selfies, proof of address, and declared sources of funds. 

The access is reportedly valid for at least one to two months before rotation, with time-based authentication codes expiring in February. However, Cryptopolitan has not found any other independent confirmation or evidence supporting the allegation, and Kraken’s support team has not acknowledged any compromise of its internal systems.

In mid-2025, Cryptopolitan had reported that Kraken and Binance were targeted by the same social engineering campaign that resulted in a successful customer data breach at Coinbase. According to people familiar with the matter, attackers contacted customer support agents at the exchanges and enticed them with bribes in exchange for user data. 

Coinbase executive Brian Armstrong issued a statement saying several overseas customer service representatives accepted the bribes and provided information that included customer names, addresses, partial KYC records, and account balances.

The attackers later attempted to extort Coinbase, demanding a $20 million ransom in exchange for deleting the stolen data, according to people familiar with the investigation. Coinbase declined to pay the ransom and instead notified law enforcement authorities.

The breach exposed Coinbase to potential losses estimated at up to $400 million. However, for Kraken and Binance, the social engineering attempt was thwarted through layered access restrictions and real-time monitoring of support interactions.

Binance has said it uses artificial intelligence systems to monitor conversations between customer support agents and users in several languages. Those systems can flag suspicious behavior like potential bribery attempts, and automatically terminate communications when risks are detected.

Kraken has said it employs internal safeguards that limit unnecessary access to customer information and monitor anomalous activity within its systems. 

“Behind the scenes, there also is AI, machine learning, some other analytics that are going on behind the scenes that are transparent to the user to say, is everything looking the way it should? There are times when our teams will be able to jump in front and stop those types of attacks. There’s controls that you as a user have at your disposal, and then there’s controls that you don’t have to do anything, but it’s based on your behavior, based on activity, we have the ability to intervene and what we call save.”

Chief Security Officer Nick Percoco.

Coinbase helps law enforcement arrest service agent in India

Just last week, Coinbase CEO Armstrong revealed to the public that a former customer service agent for the exchange was arrested in India, months after the support representative gave hackers access to customer data.

A Coinbase spokesperson confirmed the arrest and said it came on the heels of a coordinative effort with law enforcement agencies from several jurisdictions, helping the security groups identify and prosecute those involved.

The Brooklyn District Attorney’s Office also announced charges against a Brooklyn man accused of orchestrating “a long-running impersonation scheme” on Coinbase customers in the US.

According to the indictment, the defendant posed as a Coinbase representative and used social engineering to convince victims that their accounts were at immediate risk. The Department of Justice mentioned that he directed victims to transfer funds to wallets under his control and took away nearly $16 million from approximately 100 victims. However, more than $600,000 has been recovered so far. 

Get $50 free to trade crypto when you sign up to Bybit now