Copy link
Increase text size
Decrease text size
Link copied

Hackers stole crypto from 6,000 Coinbase accounts between March and May 2021

The crypto platform revealed that there was a vulnerability in the SMS account recovery process that allowed the cybercriminals to sabotage the recovery procedure.

Image by Gerd Altmann from Pixabay

Mon, 04 Oct 2021, 16:00 pm UTC

Crypto exchange Coinbase revealed that hackers were able to breach the platform’s security early this year. Around 6,000 accounts were affected by the hack that exploited a vulnerability in the company’s SMS multi-factor authentication security feature.

In a notification sent to affected customers last week, Coinbase said that hackers were able to steal crypto between March and May 2021, Bleepingcomputer reported. Around 6,000 of the platform’s 68 million users were affected by the hack.

Coinbase explained that hackers needed to have a customer’s email address, phone number, and password to their Coinbase account to successfully pull off the attack. This suggests that the perpetrators might have access to this sensitive data.

While it is yet unclear just how the cybercriminals gained access to customer data, the platform believes that it might have been done through phishing campaigns that targeted Coinbase users. Another possibility is that banking Trojans, which were traditionally used to steal online bank details, might have been employed to gain the needed data to access the victims’ crypto accounts in Coinbase.

Coinbase employs multi-factor authentication - such as security keys, Time-based One Time Passwords (TOTP) with an authenticator app or SMS message - to prevent hackers from accessing customer accounts even if they have a Coinbase customer’s credential. However, the platform revealed that there was a vulnerability in the SMS account recovery process that allowed the cybercriminals to sabotage the recovery procedure.

“Even with the information described above, additional authentication is required in order to access your Coinbase account,” the company said in the notification. “However, in this incident, for customers who use SMS texts for two-factor authentication, the third party took advantage of a flaw in Coinbase’s SMS Account Recovery process in order to receive an SMS two-factor authentication token and gain access to your account.”

The company also promised to reimburse affected customers.“We will be depositing funds into your account equal to the value of the currency improperly removed from your account at the time of the incident,” Coinbase said. “Some customers have already been reimbursed -- we will ensure all customers affected receive the full value of what you lost. You should see this reflected in your account no later than today.”

TokenPost | [email protected]

<Copyright © TokenPost. All Rights Reserved. >

To leave a comment, please sign in.
  • west
  • 2021.10.18 06:18:29
I was searching for loan to sort out my bills& debts, then i saw comments about Blank ATM Card that can be use to hacked into Atm machine to withdraw money from any ATM machines around the world, I doubted this but decided to give it a try by contacting [email protected] OR +1 (659) 210‑0433 (Whats app)
they responded with their guidelines on how the card works. I was assured that the card can withdraw 3,000 Euro instant per day so i requested for one & paid the charges fee to obtain the card, after 3 days , i was shock to see the UPS agent in my resident with a parcel{card} i signed and went back inside and confirmed the card work's after the agent left. This is no doubts because i have the card & has made used of the card. This hackers are set to help people with financial freedom!! Contact this email if you wants to get rich with this Via: [email protected] OR +1 (659) 210‑0433 (Whatsapp)
  • 0
  • ·
  • 0
More
  • Bitcoin (btc) $63,217.00 (+0.27%)
  • Ethereum (eth) $4,239.55 (+2.23%)
  • Binance Coin (bnb) $489.35 (+0.83%)
  • Tether (usdt) $1.00 (-0.09%)
  • Cardano (ada) $2.18 (+1.63%)
  • Bitcoin (btc) $63,217.00 (+0.27%)
Jul 15, 2021 (Thursday)
13:30
BTC Surges by 1.16% Within 5 Mins, Marking 31,824.01 USDT
12:06
BTC Surges by 1.12% Within 5 Mins, Marking 32,104.8 USDT
10:25
BTC Drops by 1.03% Within 5 Mins, Marking 32,171.88 USDT
02:13
TriumphX Scouts 'MINAMCOMPANY' CEO Woo-Seong Lee As Creative Director
02:00
ETH Tops List Of Crypto Net Inflow With $298.96 Mln In Past 10 Hours
Jul 14, 2021 (Wednesday)
13:14
BTC Surges by 1.03% Within 5 Mins, Marking 32,738.08 USDT
09:03
BTC Surges by 1.01% Within 5 Mins, Marking 31,899 USDT
02:30
Crypto Market Sentiment On Jul 14: Market In "Extreme Fear"
02:00
ETH Tops List Of Crypto Net Outflow With $224.97 Mln In Past 10 Hours
Jul 13, 2021 (Tuesday)
02:30
Crypto Market Sentiment On Jul 13: Market In "Extreme Fear"
02:00
ETH Tops List Of Crypto Net Outflow With $178.61 Mln In Past 10 Hours
Jul 12, 2021 (Monday)
02:30
Crypto Market Sentiment On Jul 12: Market In "Extreme Fear"
02:00
BTC Tops List Of Crypto Net Inflow With $164.82 Mln In Past 10 Hours
Jul 11, 2021 (Sunday)
21:31
BTC Surges by 1.02% Within 5 Mins, Marking 34,475.6 USDT
10:00
ETH Tops List Of Crypto Net Inflow With $122.76 Mln In Past 18 Hours
06:17
SOBA Listed On LATOKEN
02:30
Crypto Market Sentiment On Jul 11: Market In "Extreme Fear"
02:00
BTC Tops List Of Crypto Net Outflow With $87.56 Mln In Past 10 Hours
Jul 9, 2021 (Friday)
21:40
BTC Surges by 1.08% Within 5 Mins, Marking 33,911.8 USDT
02:30
Crypto Market Sentiment On Jul 09: Market In "Extreme Fear"
Subscribe to the TokenPost newsletter!
Don't show me this again today.
Back to top
Copyright ⓒ TokenPost. All Rights Reserved.
PUBLISHsoft