Kraken’s internal support panel access is being sold on the dark web, users in trouble

The post Kraken’s internal support panel access is being sold on the dark web, users in trouble appeared on BitcoinEthereumNews.com.

Claims that access to Kraken’s internal customer support systems is being offered for sale on a dark web forum are currently making rounds on X, even as the evidence backing the alleged breach is largely unverified. According to web activity monitoring social account Dark Web Informer, a read-only version of Kraken’s internal support panel is on the market, being sold for as little as $1, and is supposedly negotiable.  A snapshot of the dark web forum shows user “ransomcharger” telling their associates that the access would allow the viewing of user profiles and transaction histories, and could generate customer support tickets to phish customers or extract private information. Kraken support access could expose customer info for 2 months According to the listing, the access is reportedly not restricted by IP address, proxied through Kraken’s own systems. It can retrieve full know-your-customer (KYC) documents, including identification cards, selfies, proof of address, and declared sources of funds.  The access is reportedly valid for at least one to two months before rotation, with time-based authentication codes expiring in February. However, Cryptopolitan has not found any other independent confirmation or evidence supporting the allegation, and Kraken’s support team has not acknowledged any compromise of its internal systems. In mid-2025, Cryptopolitan had reported that Kraken and Binance were targeted by the same social engineering campaign that resulted in a successful customer data breach at Coinbase. According to people familiar with the matter, attackers contacted customer support agents at the exchanges and enticed them with bribes in exchange for user data.  Coinbase executive Brian Armstrong issued a statement saying several overseas customer service representatives accepted the bribes and provided information that included customer names, addresses, partial KYC records, and account balances. The attackers later attempted to extort Coinbase, demanding a $20 million ransom in exchange for…

Leave a Reply

Your email address will not be published. Required fields are marked *

Filed under: News - @ January 2, 2026 8:24 am