Bitcoin Depot Discloses Cyberattack Leading to $3.6M Crypto Theft
Bitcoin Depot, a U.S. cryptocurrency ATM operator, disclosed a cyberattack on April 13, 2026. Attackers stole credentials tied to digital asset settlement accounts and subsequently transferred over 50 BTC, valued at more than $3.6 million, from company-controlled wallets before access was blocked. The company operates more than 25,000 kiosks and checkout locations.
Signal context
First seen: Apr 13, 2026
Last updated: Jun 25, 2026
Status: Public signal
Key points
- Cyberattack disclosed on April 13, 2026.
- Attackers stole credentials for digital asset settlement accounts.
- Over 50 BTC, worth more than $3.6 million, was stolen from company wallets.
Signal analysis
BetaIt helps compare this signal with other published signals without treating the labels as final determinations.
Likely country: Location not provided
Watch internet-facing systems, credential abuse and exploit activity.
- Source type: outside the affected organization
Impact area: Confidentiality
- 1 signal in the same sector
- 95 signals with the same likely impact area
- 1 signal linked to this organization/domain
External sources
Related signals
Grouped by why the signal is relevant.
Snyk Affected by Klue Supply Chain Data Breach
Developer security platform Snyk was impacted by the Klue supply chain attack, which led to unauthorized access to customer data within Salesforce environments. The attack leveraged compromised OAuth tokens from the Klue platform.
Jamf Customer Data Exposed in Klue Supply Chain Attack
Jamf, a provider of Apple device management solutions, was impacted by the Klue supply chain attack. The incident involved unauthorized access to customer data stored in Salesforce instances, stemming from compromised OAuth tokens from the Klue platform. The Icarus extortion group claimed responsibility for the attack.
Sprout Social Data Compromised in Klue Supply Chain Attack
Sprout Social, a social media management platform, was among the companies affected by the Klue supply chain attack. The incident led to unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform. The Icarus extortion group claimed responsibility for the attack.
Gong Customer Data Exposed in Klue Supply Chain Attack
Gong, a revenue intelligence platform, was among the organizations impacted by the Klue supply chain attack. The incident involved unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform. The Icarus extortion group claimed responsibility for the attack.
OneTrust Customer Data Exposed in Klue Supply Chain Attack
OneTrust, a privacy, security, and governance technology company, was among the organizations affected by the Klue supply chain attack. The incident involved unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform.
Insurity Customer Data Exposed in Klue Supply Chain Attack
Insurity, a leading provider of cloud-based software for insurance carriers, was impacted by the Klue supply chain attack. The incident involved unauthorized access to customer data within Salesforce environments, due to compromised OAuth tokens from the Klue platform.