The largest US-based cryptocurrency exchange has admitted to being exploited earlier this year when hackers stole assets from approximately 6,000 users. The company vowed to reimburse all affected users.
- According to a copy of the letter sent to the affected customers, which was available on the website of California’s Attorney General, the exploits took place somewhere between March and May 20th this year.
- It reads that an unauthorized third party had gained access to the accounts of at least 6,000 Coinbase clients and drained an undisclosed amount of funds from there.
- The exchange explained that the security breach became possible because the perpetrators had “prior knowledge of the email address, password, and phone number” associated with each account.
- The letter said that Coinbase has failed to determine how “these third parties gained access to this information.” It explained that these types of activities typically involve phishing attacks or other social engineering techniques to “trick a victim into unknowingly disclosing login credentials to a bad actor.”
- Although Coinbase asserted that even if the perpetrators had access to the aforementioned information, they would still need additional authentication to access the accounts. However, the two-factor authentication through SMS texts had a flaw, which they were able to exploit.
-
“The third party took advantage of a flaw in Coinbase’s SMS Account Recovery process in order to receive an SMS two-factor authentication token and gain access to your account.”
- Ultimately, the perpetrators were able to transfer the funds out of the compromised accounts.
- The exchange promised it had upgraded its authentication and other security protocols. Additionally, Coinbase vowed to deposit funds into the affected account “equal to the value of the currency improperly removed” during the time of the incidents.
- Some customers have already received the reimbursement, while the remaining should be completed “no later than today.”
- It’s worth noting that these incidents had taken place approximately at the same time when the giant exchange became a publicly traded company. Coinbase’s shares went live for trading on Nasdaq in April this year.
Binance Futures 50 USDT FREE Voucher: Use this link to register & get 10% off fees and 50 USDT when trading 500 USDT (limited offer).
PrimeXBT Special Offer: Use this link to register & enter POTATO50 code to get 50% free bonus on any deposit up to 1 BTC.
Source: https://cryptopotato.com/coinbase-admits-getting-compromised-at-least-6000-users-affected/
- &
- 000
- access
- Account
- activities
- Additional
- ADvantage
- AI
- All
- April
- Assets
- Authentication
- border
- breach
- BTC
- code
- coinbase
- company
- content
- Credentials
- cryptocurrency
- Cryptocurrency Exchange
- Currency
- Customers
- Engineering
- exchange
- Exploit
- Fees
- flaw
- Free
- funds
- Futures
- General
- hackers
- How
- HTTPS
- information
- IT
- knowledge
- Limited
- March
- Nasdaq
- offer
- order
- Other
- Password
- phishing
- phishing attacks
- Reading
- recovery
- security
- Share
- Shares
- SMS
- Social
- Social Engineering
- Sponsored
- stole
- third parties
- time
- token
- Trading
- USDT
- users
- value
- Website
- worth
- year
More from CryptoPotato
Bitrue Delegates 1 Million ADA Tokens for Staking to Support Cardano’s Decentralization
Source Node: 911629
Time Stamp: Jun 9, 2021
Love Hurts: Minnesota Man Loses Over $9 Million in a Crypto Romance Scam: Report
Source Node: 2199238
Time Stamp: Aug 6, 2023
Over $300M Liquidated as Bitcoin Price Saw its Highest Daily Increase Since February 2021
Source Node: 1192900
Time Stamp: Mar 1, 2022
Bitcoin Surpasses $40K Following Massive Volatility, Markets Add $80B Overnight (Market Watch)
Source Node: 1217539
Time Stamp: Mar 16, 2022
Crypto Trading Volumes Slumped in June to the Lowest Level Since 2020 (Report)
Source Node: 1579042
Time Stamp: Jul 17, 2022
Binance Burns Almost $400 Million Worth of BNB, Price Unfazed
Source Node: 1858384
Time Stamp: Jul 19, 2021
A16z Exerts Control Over Uniswap by Downvoting BNB Chain Deployment
Source Node: 1941251
Time Stamp: Feb 6, 2023
ZeroLend Gears Up for Q1 2024 Token Launch: Seed Round Successfully Closed, Private Round Sees Surge
Source Node: 2488844
Time Stamp: Feb 20, 2024
Bitcoin Blasts Over $49,000 As ETFs Gather $1.7 Billion In Volume After Launch
Source Node: 2436984
Time Stamp: Jan 11, 2024