Hackers exploit MFA flaw to steal from 6,000 Coinbase customers — report
Malicious actors reportedly took advantage of Coinbase’s SMS account recovery process to gain access to user funds. Cryptocurrency exchange Coinbase has reportedly suffered another security breach after attackers were able to bypass the company’s multi-factor authentication, or MFA, feature in a coordinated campaign earlier this year. The attackers stole cryptocurrency from 6,000 accounts, though the monetary value of the theft wasn’t disclosed, according to a report from Bleeping Computer. Earlier this week, Coinbase reportedly notified affected customers that the theft occurred between....
Related News
The Nasdaq-listed cryptocurrency exchange Coinbase has disclosed that at least 6,000 users were victims of a hacking campaign to gain unauthorized access to the accounts of Coinbase customers. The hackers also took advantage of a flaw in Coinbase’s SMS Account Recovery process to gain access to user accounts. Cryptocurrencies of at Least 6,000 Coinbase Customers Stolen by Hackers Cryptocurrency exchange Coinbase reportedly informed over 6,000 customers this week that their accounts had been compromised and funds were removed. A copy of the letter is posted on the website of....
Hackers leveraged a vulnerability in the bitcoin exchange's SMS recovery system to steal cryptocurrency from 6,000 customers.
3.1 million email addresses linked to CoinMarketCap accounts were reportedly being traded on hacking forums, according to Have I Been Pwned. CoinMarketCap, a price-tracking website for cryptocurrencies, has reportedly fallen victim to a hack that leaked 3.1 million user email addresses. The information came into light after the hacked email addresses were found to be traded and sold online on various hacking forums, and revealed by Have I Been Pwned, a website dedicated to tracking hacks and compromised online accounts. CoinMarketCap, a subsidiary of Binance cryptocurrency exchange,....
The white-hat hacker responsible for discovering a crisis-level flaw in Coinbase API said the $250K bounty was not "too low." On February 11th, two days before the Super Bowl and Coinbase’s $14 million color-changing QR code advert, an engineer was desperately trying to reach out to Coinbase management and the development team.Anyone here can get me a direct line with someone at @coinbase , preferably management or dev team, possibly @brian_armstrong himself? I'm submitting a hacker1 report but I'm afraid this can't wait. Can't say more either, this is potentially market-nuking. DMs open.—....
Hackers are changing their game plan. By using a person’s phone number they can now gain access and steal money from someone’s bank account to bitcoin. In a report from Forbes, which highlights the story of Colombian Jered Kenna, hackers were able to move his mobile phone number, after faking his identity, transferring it from T-Mobile to a carrier known as Bandwidth, which was linked to the hacker’s Google voice account. The hackers then subsequently proceeded to reset Kenna’s email passwords before locking him out of 30 other accounts, which included two banks, PayPal, two bitcoin....