Skip to main content

Coinbase hackers exploit multi-factor flaw to steal from 6,000 customers

posted onOctober 4, 2021
by l33tdawg
Flickr
Credit: Flickr

Bad actors were able to infiltrate the accounts of and steal cryptocurrency from around 6,000 Coinbase customers by exploiting a multi-factor authentication flaw, according to Bleeping Computer. The cryptocurrency exchange told the publication that its security team observed a large-scale phishing campaign targeting its users between April and early May 2021. Some users may have fallen victim to the malicious emails, giving hackers access to their usernames and passwords. Worse, even those who had multi-factor authentication switched on were compromised because of a flaw in the exchange's system.

In the notification [PDF] it sent to affected customers, Coinbase said the bad actors took advantage of a vulnerability in its SMS Account Recovery process. That allowed the hackers to receive the two-factor token that was supposed to be sent via text to the account owner's phone number.

Coinbase recommends using two-factor with a security key on its website, followed by an authenticator app. It lists SMS authentication as a last resort, advising users to lock their mobile accounts to protect themselves from SIM swap scams or phone port frauds. Back in August, Coinbase also notified 125,000 users that their two-factor settings had changed, but the exchange said back then that the notification was sent by mistake and wasn't the result of a hack.

Source

You May Also Like

Recent News

Friday, November 8th

Friday, November 1st

Tuesday, July 9th

Wednesday, July 3rd

Friday, June 28th

Thursday, June 27th

Thursday, June 13th

Wednesday, June 12th

Tuesday, June 11th

Friday, June 7th