A major data breach at cryptocurrency exchange Coinbase has been traced back to a January incident involving an employee of TaskUs, a U.S.-based outsourcing company with operations globally. The security lapse, reportedly occurring when a female TaskUs worker took pictures of sensitive customer data on her mobile phone, was not publicly acknowledged until May 14th—months after the breach occurred. Reports indicate that this incident involved an alleged sale of the stolen data to hackers in exchange for cash and culminated in a $20 million ransom demand issued by attackers. Coinbase subsequently confirmed nearly 70,000 customers were affected. The leaked information later became part of a public disclosure orchestrated by the company following a breach in mid-May and a separate lawsuit filed against TaskUs on May 27th. This latest incident raises serious concerns about data security practices within crypto-related customer support outsourcing.