Kraken Receives Extortion Email, Responds with the Energy of Someone Who Doesn't Even Open Spam

Kraken's Chief Security Officer Nick Percoco confirmed that a criminal group recently tried to shake down the exchange with the enthusiasm of someone asking "when moon?" at an AMA—except this was asking for actual money. The blackmailers demanded payment and threatened to drop videos allegedly showing customer data pulled from internal systems. Nothing like a good old-fashioned ransom note with a crypto twist.

Kraken's response? A hard pass louder than a degen ape who just realized they missed the top by 20%. The exchange refused to pay any ransom and won't negotiate with malicious actors, because apparently some things in crypto actually stay decentralized—including Kraken's spine. More importantly, no actual breach occurred. Systems remained secure, user funds were never at risk, and the only thing getting wrecked was the criminals' blackmail spreadsheet.

The root cause read like a plot twist nobody asked for: an inside job. Investigations revealed that a support employee had gotten cozy with improper access to limited customer support data. Think of it as a classic rugs-pulled-by-insider situation, except the rug was actually just some spreadsheets and nobody lost money. Access was terminated immediately, affected users got the notification email we all pretend to read, and additional security measures were deployed faster than you can say "not your keys, not your problem."

The first incident occurred back in February 2025, traced back to a tip from a reliable source who apparently has better intel than most crypto analysts. A second similar incident recently prompted the same swift response—individual identified, access blocked, users notified. Kraken moved with the kind of efficiency usually reserved for getting rugged before anyone can say "gm."

Roughly 2,000 accounts (0.02% of Kraken's customer base) may have been viewed across both incidents. For context, that's roughly the equivalent of finding out your local coffee shop accidentally showed one customer's order to two thousand other customers—except in crypto, everyone acts like the world is ending. The actual exposure? Minimal. The Twitter discourse?