Coinbase Domain Name Used by Scammers in Recent Phishing Attacks – What’s Going On?

Author

Jai Pratap

Author

Jai Pratap

About Author

Jai serves as the Asia Desk Editor for Cryptonews.com, where he leads a diverse team of international reporters. Jai has over five years of experience covering the web3 industry.

Author Profile

Share

Copied

Last updated: 

October 22, 2023

Why Trust Cryptonews

Cryptonews has covered the cryptocurrency industry topics since 2017, aiming to provide informative insights to our readers. Our journalists and analysts have extensive experience in market analysis and blockchain technologies. We strive to maintain high editorial standards, focusing on factual accuracy and balanced reporting across all areas - from cryptocurrencies and blockchain projects to industry events, products, and technological developments. Our ongoing presence in the industry reflects our commitment to delivering relevant information in the evolving world of digital assets. Read more about Cryptonews

Coinbase users have reported a series of phishing attacks that used the crypto exchange’s domain name.

The crypto exchange’s users reported that they received texts and emails from scammers with links under the domain Coinbase.com.

Twitter user Daniel Mason alleged that a scammer contacted him using a real phone number, followed by a phishing email from a Coinbase.com domain.

Coinbase Users Report Similar Sophisticated Scams

In a twitter thread, Mason claimed that he received a call claiming his account was compromised and needed to be reset. 

The caller further pointed the potential victim to an email that came from the address mail.Coinbase.com, confirming the data breach that the caller warned of. 

The caller further confirmed the content and the timestamp of the email.

Then Daniel was told that he would receive another email from Coinbase about the case. And instantly he received one from the address – [email protected].

Daniel further claimed that the caller knew his Social Security Number, driver’s license number and his address. 

🆔 I founded an identity / security company.
🔐 I'm currently building an auth company.
😱 But my Coinbase account *almost* got phished.

This is the (2nd) most legit fraud attack I've ever experienced personally. Wild story below. 🧵 👇

— Daniel Mason (@dgmason) July 7, 2023

However, this is not the only such case where a Coinbase user received dangerously close phishing scam calls and emails. 

Another Twitter user Jacob Canfield claimed in a Twitter thread that he also received three calls from “Coinbase support” asking if he requested an email change and a 2FA change. He did not. 

Jacob claimed that the caller had his email, location and also sent a ‘verification code’ email from [email protected].

Holy shit.

I just got attacked with one of the most complex scams in #crypto that I have seen to date.

Please read if you use @coinbase.

This just happened 15 minutes ago.

THIS IS A WARNING FOR ALL COINBASE USERS!

There has been some sort of a data breach.

First, I… pic.twitter.com/aOVWLpAtY4

— Jacob Canfield (@JacobCanfield) June 13, 2023

As per a blog on Coinbase website, the exchange’s staff will never ask users for passwords or two-step verification codes and won’t request remote access to devices.

A user last year claimed to have lost 13.85 BTC from a similar social engineering phishing attack. 

Given the exchange’s users are targeted with listed email addresses on Coinbase, many will be gullible to such scams. 

Coinbase, in a statement to Cointelegraph, said that they have extensive security resources dedicated to educating customers about preventing phishing attacks and scams. 

However, the largest US-based crypto exchange did not address the use of the listed email addresses on Coinbase and its domain name.