Hackers exploit MFA flaw to steal from 6,000 Coinbase customers — Report

Published at: Oct. 1, 2021

Cryptocurrency exchange Coinbase has reportedly suffered another security breach after attackers were able to bypass the company’s multi-factor authentication, or MFA, feature in a coordinated campaign earlier this year. 

The attackers stole cryptocurrency from 6,000 accounts, though the monetary value of the theft wasn’t disclosed, according to a report from Bleeping Computer. Earlier this week, Coinbase reportedly notified affected customers that the theft occurred between March and May.

To gain access to the accounts, the attackers must have known the affected users’ email address, password and phone number. It’s not clear how the attackers obtained this information, though phishing scams targeting exchange users are not uncommon. However, Coinbase did identify a vulnerability in the account recovery process that the attackers exploited to gain access to the accounts:

“In this incident, for customers who use SMS texts for two-factor authentication, the third party took advantage of a flaw in Coinbase’s SMS Account Recovery process in order to receive an SMS two-factor authentication token and gain access to your account.”

Coinbase, which operates one of the largest crypto exchanges in the world, has received scathing criticism for its poor customer service. As Cointelegraph reported, customers whose accounts were reportedly hacked and drained of funds were unable to access support staff, leading to thousands of complaints against the company.

Related: SEC was the only regulator unwilling to meet with Coinbase: Brian Armstrong

Coinbase’s initial public offering debuted at $86 billion in April, but the company has been unable to scale its customer service department adequately. In August, the company announced a new support line for customers who believe their account has been compromised.

Tags
Related Posts
Coinbase Custody Obtains Two Major Security Evaluations
The crypto custody arm of major United States-based cryptocurrency exchange Coinbase, Coinbase Custody, obtained two new security evaluations. According to a press release published on Feb. 12, Coinbase Custody was granted a Service Organization Control (SOC) 1 Type 2 and a SOC 2 Type 2 report by major accounting firm Grant Thornton. System Organization Control reports In obtaining the reports, Coinbase Custody is able to prove to clients that they are compliant with a variety of security and reporting standards. According to Grant Thornton’s website, SOC reports are meant to provide information on “the existence and strength of financial, operational …
Business / Feb. 13, 2020
SEC threatens to sue Coinbase over crypto yield program it considers a security
The United States Securities and Exchange Commission has reportedly threatened to sue Coinbase over a crypto yield program it deems as a security. Coinbase CEO Brian Armstrong tweeted on Wednesday that there has been some “really sketchy behavior coming out of the SEC recently” before launching into a 21 post thread detailing the SEC’s dealings with the firm. Armstrong explained that the crypto exchange approached the SEC earlier this year to brief the enforcement body over the up-and-coming Coinbase Lend program that intends to offer 4% annual yield returns on deposits of the USD Coin (USDC) stablecoin. According to the …
Sec / Sept. 8, 2021
Spartan Protocol exploit results in loss of $30M
Spartan Protocol, a liquidity platform for synthetic assets on the Binance Smart Chain, was drained of $30 million in a coordinated attack on its liquidity pool late Saturday. The exploit targeted a “flawed liquidity share calculation” in the SPARTA/WBNB liquidity pool, which enabled the attacker to withdraw the funds, blockchain security company PeckShield explained. The security expert continued: “In particular, the specific hack inflates the asset balance of the pool before burning the same amount of pool tokens to claim an unnecessarily large amount of underlying assets. The consequence of this attack results in more than $30M loss from the …
Business / May 2, 2021
Coinbase discloses recent cyberattack targeting employees
Crypto exchange Coinbase experienced a cybersecurity attack targeting its employees on Feb. 5. The attack came through SMS scams and involved impersonations of IT staff, according to a recent report from the company's engineering team. No customers' funds or information were impacted, the firm said. As per the report, on a late Sunday several Coinbase employees received SMS messages requiring them to urgently log in via the link provided to access an important message. Acting in a good faith, one employee followed the exploiter' instructions: "While the majority ignore this unprompted message - one employee, believing that it’s an important …
Technology / Feb. 22, 2023
Top 7 cybersecurity jobs in high demand
In today’s digital age, cybersecurity has become a critical aspect of almost every business. Cyber threats are increasing daily, and businesses must take proactive measures to protect their networks and data. As a result, the demand for cybersecurity professionals has skyrocketed. Little Friday humour #meme #cybersecurity @hackurityio pic.twitter.com/MArEpCh03k — Harold De Vries (@devries_harold) February 17, 2023 In this article, we will discuss the top seven cybersecurity jobs that are in high demand. Cybersecurity analyst A cybersecurity analyst is responsible for identifying and mitigating cyber threats to an organization’s network and data. They examine system logs and network traffic to find …
Technology / Feb. 26, 2023