CryptoCodeFinder
Back to news
NewsPublished 15 April 20263 min read

Kraken Insider Leak Exposes 2,000 Crypto Accounts

Kraken, one of the largest cryptocurrency exchanges in the United States, confirmed on 14 April that a criminal group is attempting to extort the company after recruiting two customer support staff members to steal user data. Approximately 2,000 accounts β€” less than 0.02% of Kraken's total user base β€” had information accessed, including identity documents, transaction histories, and customer support records.
By CCF Editorial TeamPublished 15 April 2026 Β· Editorial standards
Key points
  • Two recruited Kraken support staff exposed ~2,000 user accounts before dismissal
  • No funds were stolen β€” the breach was limited to KYC data and transaction records
  • Crypto casino players who use Kraken to fund gambling accounts should monitor for targeted phishing
  • The attack mirrors a 2025 Coinbase insider breach β€” a growing pattern against support staff

No funds were at risk and the exchange's core systems were not compromised, but the incident points to a growing pattern of insider-recruitment attacks targeting crypto exchanges.

What this means for crypto casino players

Casino players routinely use Kraken to purchase Bitcoin, XRP, Ethereum, and other coins before depositing at crypto gambling platforms. The data accessed in this incident β€” particularly transaction histories and know-your-customer (KYC) documentation β€” could reveal those gambling-linked transfers to whoever controls the criminal network behind the extortion attempt. Players can review security-conscious platform options on our best crypto casino guide for US players.

For the roughly 2,000 affected accounts, the most sensitive exposure is the combination of government-issued ID and transaction history. KYC documents can be used in identity fraud; transaction records that show regular withdrawals to casino deposit addresses could be used for targeted phishing or individual extortion β€” the same approach now being directed at Kraken as a company. Players who want to reduce their exchange-side footprint can use a self-custody wallet as an intermediary step between the exchange and a casino platform.

How the insider recruitment worked

Kraken's Chief Security and Information Officer Nick Percoco disclosed that the first incident came to light in February 2025, when footage of Kraken's internal support tools appeared on criminal forums. The exchange traced the source to a single support employee who had been recruited by an organised criminal network, granting read-only access to customer records. A second, separate incident was identified more recently, and the company estimates around 2,000 accounts were affected across both events. The accessed data included KYC records, transaction histories, and support ticket content β€” not withdrawal permissions or private keys.

This recruitment model mirrors an insider attack on Coinbase in 2025, where social engineering similarly extracted customer records without any direct breach of core infrastructure. Security analysts note that criminal networks are increasingly targeting exchange support staff rather than technical systems, as employees with legitimate access are easier to compromise than hardened authentication layers.

β€œWe will not pay these criminals. We will not ever negotiate with bad actors.” β€” Nick Percoco, Kraken Chief Security and Information Officer

What to watch

Federal investigators are working with Kraken to identify and prosecute those involved. If the stolen data is sold or circulated rather than held purely for exchange-level extortion, affected users may receive phishing messages that reference specific transaction details or KYC documents to appear credible. Players with Kraken accounts should enable hardware-key two-factor authentication β€” a hardware security key is significantly harder for insider access to circumvent than SMS-based codes β€” and treat any unsolicited contact claiming knowledge of their account history with immediate suspicion.

CCF Editorial Team
Independent crypto gambling research

Our editorial team tests every platform independently with real crypto deposits, verifies withdrawal speeds, and evaluates operator track records. We never accept payment for favourable reviews and disclose all affiliate relationships transparently.

Read our editorial standards β†’

Related reading

Editorial picks connected to this story.
Comparison page
Best crypto casinos for US players
Security-conscious platforms tested for fund safety, withdrawal speed, and operator track record.
Comparison page
Our top-rated crypto casinos
Editor-reviewed platforms with provably fair games and transparent dispute mechanisms.
News
Bitcoin Hits $80K Wall as Oil Surge Wipes Gains
Bitcoin reversed from $79,500, blocked at $80K as Brent crude hit $107 per barrel and wiped BTC casino bankrolls.
Gambling can be addictive. Please play responsibly. If you or someone you know has a gambling problem, call 1-800-522-4700 or visit BeGambleAware.org.

β„Ή CryptoCodeFinder is an independent comparison site. We may earn commissions when you click links or sign up with our partners. This does not influence our ratings or recommendations.

Cryptocurrency gambling involves risk. Only gamble with money you can afford to lose. If you or someone you know has a gambling problem, visit ncpgambling.org or call 1-800-522-4700.

Β© 2026 Crypto Code Finder. All rights reserved.Play responsibly. Gambling can be addictive.