Kraken Tells Blackmailers to Take a Hike: No Ransoms, Just Refunds (and Lawyers)

Kraken just had a week that could’ve starred in a degen noir thriller—except instead of a dramatic climax, they served cold, unbothered energy. A criminal crew, possibly fresh off a ransomware tutorial from a sketchy Telegram channel, tried the old “we’ve got compromising videos” routine, claiming they had footage of customer data pulled from Kraken’s internal systems. Their demand? Probably crypto, because of course it was. Kraken’s response? A crisp, legally seasoned “lol no.”

The exchange’s Chief Security Officer, Nick Percoco, didn’t even blink. In a move that deserves its own meme format, he confirmed Kraken refused to pay a single sat and will continue to treat extortion attempts like expired memecoins—worthless and best ignored. He also dropped the most important detail: zero breach, zero lost funds, and zero tolerance for digital shakedowns.

As it turns out, the “hacker masterminds” weren’t exactly Snowden-tier. The investigation revealed the access didn’t come from a zero-day exploit or some APT group with a six-figure Bugcrowd bounty. Nope—it was an internal support employee who decided to treat customer data like their personal Netflix queue. One too many episodes of “I Know What You Withdrew Last Summer,” and boom: termination with extreme prejudice. Affected users got the heads-up, and Kraken slammed the door shut with extra digital locks.

The first incident kicked off in February 2025, thanks to a tip from a source so reliable they should probably get airdrops for good citizenship. Fast forward to recently, and a second video—same script, different cast—showed up like a bad sequel. Kraken’s security team responded faster than a degen hitting a 100x leveraged long: identified, blocked, notified, fortified. Groundhog Day, but with better firewalls.

Across both incidents, around 2,000 user accounts—roughly 0.02% of Kraken’s army—may have been subject to some digital peeping. Not a massive leak, but enough to make a few folks check their 2FA settings and whisper “wagmi” under their breath. The blackmailers, sensing blood (or maybe just bad opsec), started firing off demands right after access got yanked. Too bad the exchange was already lawyering up.

Kraken says they’ve got more than enough breadcrumbs to serve on a silver platter to authorities—and they’re currently doing the international tango with law enforcement across multiple jurisdictions. This isn’t just about justice; it’s about setting a precedent: you don’t ransom a crypto exchange like it’s a small-town mayor’s office.

Bottom line: someone tried to ransomware one of the most battle-tested exchanges in the game, and Kraken responded the way any true OG would—by laughing, refunding affected users, and handing the case to legal with a side of contempt. In the world of crypto, that’s not just security. That’s flex.