$ 20,274.00
$ 1,143.31
$ 0.996061
$ 0.457618
$ 0.325753
$ 0.998071

SMS Flaw Leaves Coinbase Vulnerable: 6000 Crypto Hacks Reported

Hackers took advantage of an unexpected loophole to steal cryptocurrency from the American crypto exchange’s user accounts.

Last week, hackers leveraged an authentication bug to circumvent Coinbase’s SMS security feature, draining the accounts of over 6,000 customers, according to tech publication Bleeping Computer.

Coinbase stated it will return the stolen funds to compensate for the losses, but no other security breaches had been reported as of the time of posting.

The hackers took advantage of a flaw to get around Coinbase’s SMS authentication mechanism, which was implemented to safeguard user protection. They exploited the unauthorized access to user email addresses, passwords, and phone numbers to log in.

According to Coinbase, hackers may have used large-scale phishing attempts to get access to this sensitive information that naive consumers readily provided. Coinbase users have also been known to be victims of banking trojan malware before.

If a Coinbase customer has a multi-factor authentication set, attackers with access to the customer’s credentials and email account are typically barred from logging into the account.

Coinbase, on the other hand, stated that a flaw in their SMS account recovery process allowed hackers to acquire access to the SMS two-factor authentication token required to gain access into a secured account. A notification entailed that though the aforementioned information is necessary, for accessing your account on Coinbase additional authentication is needed. 

In this event, a third party exploited a defect in Coinbase’s SMS Account Recovery process to obtain an SMS two-factor authentication token and gain access to user accounts for those who complete the two-factor authentication via SMS.  

The flaw was quickly corrected by Coinbase as it was identified. Conversely, the exchange announced that it would refund the stolen funds straight to impacted individuals’ accounts.

The announcement of Coinbase revealed that “We will be depositing funds into your account equal to the value of the currency improperly removed from your account at the time of the incident. Some customers have already been reimbursed — we will ensure all customers affected receive the full value of what you lost. You should see this reflected in your account no later than today.”

Coinbase is among the many companies that are being hit by hacker attacks. pNetwork, Liquid Exchange and Poly Network, to name a few, have been prey to vicious hacker exploitations recently. 

Also read: Axie Infinity Gunning  for $200 as it Reaches $154 ATH

Also read:

Related News

The withdrawal limit for traders has been temporarily lowered by cryptocurrency-backed loans provider CoinLoan.

The Withdrawal Limit Temporarily Reduced by CoinLoan

The withdrawal limit for traders has been temporarily lowered by cryptocurrency-backed loans provider CoinLoan. The corporation cited the present market crash as the reason for the decision. Due to the change, customers are now limited to a $5,000 maximum withdrawal limit each day. In their announcement, they noted the following: “the interest we pay on the Interest Accounts is yielded by issuing overcollateralized loans to other platform users. Hence in some

Read More »
The price may perhaps clear the $1,200 obstacle above the next significant resistance, which is located close to the $1,180 zone.

New Surge in Sight As Ethereum (ETH) Gathers Momentum

Following a period of stability at $1,000 versus the US Dollar, Ethereum (ETH) enters a new uptrend. Above the $1,150 barrier level, Ethereum (ETH) can move much higher. Near the $1,070 region, the pricing was able to overcome a few significant obstacles. Even the 61.8 percent Fib retracement level of the significant decline from the swing high of $1,235 to the low of $997 was tested by the price. The

Read More »
In order to share their doubts about the industry, the first anti-crypto conference attendees are hoping to get a word with officials from the government.

Crypto Policy Symposium 2022: The First Anti-Crypto Conference

In order to share their doubts about the industry, the first anti-crypto conference attendees are hoping to get a word with officials from the government. Critics of the industry and doubters have joined together to host their own anti-crypto conference where they can express their doubts and connect with legislators in the midst of the most recent crypto bear market. The Crypto Policy Symposium promises to provide skeptics a platform

Read More »

My Coins

$ 20,274.000.54%
$ 1,143.311.12%
$ 0.4576182.36%
$ 0.9960610.25%

Newest Videos on YouTube

We inform and educate people about Cryptocurrencies and Blockchain technology.

© Copyright 2021, All Rights Reserved,
Crypto Academy


Contact Us

For any question conatct us through:

Disclaimer: All information and materials on this website are for educational purposes only. does not provide any form of financial advice. Cryptocurrencies are highly volatile, therefore any form of investing carries a high level of risk to your capital. It is recommended that you seek professional advice prior to implementing any investment or financial plan.

We do not ask you for your Cryptocurrency / We do not hold your Coins / We do not ask for Private Keys / Be aware of scammers and imposters.

Contact us only through: