TL;DR
- Offers have appeared on dark web forums claiming to sell access to Kraken’s internal support panel for $1, but there is no concrete evidence of an actual breach.
- The alleged sale would include read-only access to user profiles, transaction histories, and full KYC documents for one to two months.
- Similar attacks affected Coinbase and Binance. Social engineering was one of the most widely used methods by attackers throughout 2025.
Posts are circulating on dark web forums claiming to offer access to Kraken’s internal customer support panel. The information spread on X and caused immediate disruption, but so far there is no confirmation that a real breach occurred within the exchange’s systems.
According to DarkWebInformer, the alleged offer involves read-only access to Kraken’s internal support system. The listed price is as low as $1, with room for negotiation. The seller claims the access would allow viewing user profiles, transaction histories, and the creation of support tickets, a combination of data that could be used for phishing campaigns and the extraction of sensitive information.
No Official Confirmation of an Attack
The listing also claims the access would not be restricted by IP addresses and would operate through the exchange’s own infrastructure. It further alleges the ability to view full KYC documentation, including government-issued IDs, selfies, proof of address, and declared sources of funds. The access would reportedly remain valid for one to two months, with authentication codes expiring in February.
Kraken has not acknowledged any compromise of its internal systems, and there is no publicly available technical evidence supporting the seller’s claims. For now, the case remains unverified.
Kraken and Binance Rely on Enhanced Security Measures
Throughout 2025, many exchanges came under scrutiny due to a wave of social engineering attacks targeting customer support agents. During the same period, Kraken and Binance were targeted by coordinated attempts that successfully impacted Coinbase. In that case, overseas support staff accepted bribes and handed over customer data, leading to an attempted $20 million extortion. Coinbase refused to pay and notified authorities. Potential losses were estimated at up to $400 million.
Kraken and Binance avoided data leaks thanks to segmented access controls and real-time monitoring. Binance confirmed the use of artificial intelligence systems to analyze support staff conversations and detect risky behavior. Kraken also stated that it uses AI, machine learning, and behavioral analytics to limit unnecessary access and stop anomalous activity without requiring user intervention.
The weakest link remains the human factor. Even without proof of a breach, this episode highlights a structural issue: support teams have become a primary target
