Partager cet article
BTC
$99,503.68
-
3.65%ETH
$2,198.78
-
9.03%USDT
$1.0006
+
0.01%XRP
$1.9510
-
7.53%BNB
$612.05
-
3.69%SOL
$129.49
-
7.20%USDC
$1.0003
+
0.01%TRX
$0.2674
-
1.84%DOGE
$0.1483
-
7.05%ADA
$0.5297
-
7.61%HYPE
$32.91
-
0.23%WBT
$47.97
-
2.04%BCH
$452.75
-
3.47%SUI
$2.4241
-
7.57%LEO
$8.9404
+
0.18%LINK
$11.60
-
6.93%XLM
$0.2243
-
6.65%AVAX
$16.26
-
4.64%TON
$2.7353
-
6.87%SHIB
$0.0₄1046
-
6.20%Sign Up
- Back to menuCryptocurrencies
- Back to menuResearch
- Back to menu
- Back to menu
- Back to menu
- Back to menu
- Back to menuWebinars
Coinbase Users Are Losing $300M a Year to Social Scams, ZachXBT Says
ZachXBT advised Coinbase to enhance security by making phone number inputs optional, creating a restricted account type for new users and improving community education on scam prevention.
Ce qu'il:
- Coinbase users lost over $65 million to social engineering attacks in the past two months and an estimated $300 million lost to such attacks annually, according to crypto sleuth ZachXBT.
- Scammers utilize stolen personal data to deceive users by sending fake emails that mimic Coinbase's official communications, including false case IDs prompting users to transfer funds to scammer-controlled wallets, ZachXBT said.
Coinbase (COIN) users lost over $65 million to social engineering attacks in the past two months with an estimated $300 million lost to such attacks annually, crypto sleuth ZachXBT said in an X post Monday.
The actual figure lost might be higher, because the amount doesn't include unreported cases, ZachXBT said.
La Suite Ci-Dessous
Ne manquez pas une autre histoire.Abonnez vous à la newsletter Crypto Daybook Americas aujourd. Voir Toutes les Newsletters
Coinbase has not publicly commented on the matter. When asked for a comment, it highlighted a primer on identifying and avoiding social engineering scams posted to its blog on Monday.
Scammers utilize stolen personal data to deceive users by sending fake emails that mimic Coinbase's official communications, including false case IDs prompting users to transfer funds to scammer-controlled wallets, ZachXBT said.
“Scammers clone the Coinbase site nearly 1:1 and allow the scammers to send different prompts to the target via spoofed emails using panels,” he noted. “The two main groups conducting these scams are skids from the Com and threat actors located in India both primarily targeting US customers.”
5/ They then sent a spoofed email which appeared to be from Coinbase with a fake Case ID further gaining trust.
— ZachXBT (@zachxbt) February 3, 2025
They instructed the victim to transfer funds to a Coinbase Wallet and whitelist an address while “support” verified their accounts security. pic.twitter.com/pOTQpnMfCz
“A Coinbase employee told people on X to stop using VPNs to avoid being flagged as suspicious. Meanwhile, threat actors will explicitly block VPNs from phishing sites,” ZachXBT wrote in the now-viral post. “This shows Coinbase’s failure to diagnose the actual problem.”
ZachXBT advised Coinbase to enhance security by making phone number inputs optional, creating a restricted account type for new users, and improving community education on scam prevention.
UPDATE (Feb. 4, 15:57 UTC): Adds Coinbase's blog post on the topic in third paragraph.
Shaurya Malwa
Shaurya is the Co-Leader of the CoinDesk tokens and data team in Asia with a focus on crypto derivatives, DeFi, market microstructure, and protocol analysis.
Shaurya holds over $1,000 in BTC, ETH, SOL, AVAX, SUSHI, CRV, NEAR, YFI, YFII, SHIB, DOGE, USDT, USDC, BNB, MANA, MLN, LINK, XMR, ALGO, VET, CAKE, AAVE, COMP, ROOK, TRX, SNX, RUNE, FTM, ZIL, KSM, ENJ, CKB, JOE, GHST, PERP, BTRFLY, OHM, BANANA, ROME, BURGER, SPIRIT, and ORCA.
He provides over $1,000 to liquidity pools on Compound, Curve, SushiSwap, PancakeSwap, BurgerSwap, Orca, AnySwap, SpiritSwap, Rook Protocol, Yearn Finance, Synthetix, Harvest, Redacted Cartel, OlympusDAO, Rome, Trader Joe, and SUN.
Top Stories
