Kraken Says No to Extortionists: Insider Access Drama Just Got Messier for 2,000 Accounts

Kraken has confirmed an extortion attempt involving two separate incidents of unauthorized access to limited internal systems. The exchange insists no breach occurred and client funds were never at risk. Because apparently, some people confuse "rogue employee with a grudge" with "hackers owning the place."

A criminal group is threatening to release videos allegedly showing internal systems with client data unless demands are met. Kraken's response? A firm 'we will not engage or pay.' Nothing says "we mean business" quite like telling blackmailers to take their demands and shove them into a mempool with zero fees.

Both incidents traced back to members of its support team—not external attackers breaching infrastructure. The first case dates to February 2025, when Kraken received a tip about a video circulating on a criminal forum. The company quickly identified the employee involved, revoked access, and launched an internal investigation. Turns out the biggest security threat was already on the payroll.

A second, similar incident was identified more recently following another tip and video. Kraken again moved to terminate access and notify affected users. Because apparently, the lesson wasn't learned the first time. Some people really want that "disgruntled ex-employee" energy.

The incidents involved access to client support data, with approximately 2,000 accounts potentially viewed—about 0.02% of its user base. Only a 'very small number' of clients were affected, and those users have already been notified.