A post on a dark web forum claims to be selling read-only access to Kraken's internal admin panel, exposing sensitive user profiles, transaction histories, and KYC documents. Security experts warn this could enable sophisticated phishing and social engineering attacks, although some users express skepticism about the listing's authenticity. Kraken has not yet responded, and the incident highlights ongoing challenges in securing centralized exchange infrastructures.