How Crypto Criminals Stole $700 Million From People – Often Using Age-Old Tricks

The surge in cryptocurrency thefts is not driven solely by sophisticated blockchain hacks; it is increasingly powered by age‑old fraud techniques such as buying and merging stolen data sets. When a luxury retailer like Kering suffers a breach, the fallout extends beyond brand reputation. Hackers acquire the spreadsheets, enrich them with additional leaks, and create a high‑value target list that includes affluent individuals who are likely to hold significant crypto balances. This convergence of traditional data‑theft and digital‑asset exploitation creates a potent threat vector that regulators and security teams are still grappling with.

In the reported case, a hacker paid roughly $300,000 for Kering’s customer database, then cross‑referenced it with another stolen list to isolate the biggest spenders. By matching names, phone numbers, and email addresses with cryptocurrency exchange accounts, the criminal orchestrated scams that netted at least $1.5 million from Coinbase users, and personally profited $700,000 in Bitcoin from a single victim. The operation illustrates how easily personal spending data can be transformed into a weapon against crypto holdings, especially when victims are unaware that their offline purchase histories are being weaponized in the digital realm.

The broader implication for businesses and crypto platforms is clear: data hygiene and cross‑industry collaboration are essential. Luxury brands must tighten access controls and monitor for unauthorized data sales, while exchanges need robust KYC and transaction monitoring that can flag activity linked to known compromised identities. Policymakers are also urged to consider tighter regulations around the sale of personal data and to enforce stricter breach disclosure standards. As cybercriminals continue to blend conventional scams with blockchain anonymity, a coordinated defense that spans both physical and digital domains will be critical to protecting high‑net‑worth individuals and the integrity of the crypto ecosystem.