2FA system breach on Coinbase leaves at least 6 thousand users robbed

2FA system breach on Coinbase leaves at least 6 thousand users robbed
2FA system, coinbase, exchange, 2-factor authentication
Written by Wilbur Woodham

Malicious agents have managed to use a 2FA breach in the Coinbase (www.coinbase.com) cryptocurrency exchange. This case is not the first recent cryptocurrency-related emergency involving hackers. You may remember Bitcoin.org hacking which took place at the end of September 2021. This item provides a quick read to learn what happened and what we know for now.

Coinbase 2FA breach case: what do we know?

2-factor authorization

The point of 2-factor authorization is to increase security by making users confirm their identity via SMS-sent codes or biometrics. Image via www.thecloudpeople.com

The 2-factor authentication system at Coinbase exchange had vulnerabilities. That allowed cybercriminals to steal funds from the wallets of more than 6000 users. We know for the moment that the hackers had the users’ names, passwords, and telephone numbers that were keys to the client accounts. With those, the cracksmen overrode the 2FA system the exchange employs. In general, 2FA implies double-checking user identities through their portable devices. The users input an SMS-sent code on the website or verify their identity with the help of biometrics. Coinbase verification procedure implies sending one-time passwords to users via SMS.

According to Coinbase’s official response to the victims of the fraud, the robbery was possible due to the leak of at least 6000 usernames, phone numbers, and e-mail addresses with access to them.

It is worth mentioning that the attackers did not hijack the login process. Instead, they took advantage of a breach in Coinbase account recovery procedure. That procedure genuinely uses two-factor authentication. After accessing the accounts of Coinbase users, cyberthieves transferred their funds to some external wallets.

Consequences and warnings

As a matter of security, Coinbase has hastily revised and updated the account recovery protocols. Hopefully, these measures will ensure any emergency alike will not happen again. Although the exchange denies the possibility of its complicity in the data dump, the administration is making up its clients’ losses. It remains unknown how exactly the leak of personal data of Coinbase users happened.

The exchange administration presumes that cyber thieves have laid their hands on Coinbase clients’ personal data by conducting a major phishing attack. Their campaign most likely aimed to lull the victims’ vigilance by rendering a message, visually dressed as if it were from Coinbase, demanding urgent login or password change. As a result, unsuspecting users delivered their private data in good faith, believing they were using it correctly. The data users provided was directed straight to some unidentified harmful application that granted criminals access to the user’s e-mail inboxes.

Wilbur Woodham
Wilbur Woodham
IT Security Expert
It is better to prevent, than repair and repent!
When we talk about the intrusion of unfamiliar programs into your computer's work, the proverb "Forewarned is forearmed" describes the situation as accurately as possible. Gridinsoft Anti-Malware is exactly the tool that is always useful to have in your armory: fast, efficient, up-to-date. It is appropriate to use it as an emergency help at the slightest suspicion of infection.
Anti-Malware
Gridinsoft Anti-Malware 6-day trial available.
EULA | Privacy Policy | 10% Off Coupon
Subscribe to our Telegram channel to be the first to know about news and our exclusive materials on information security.
Sending
User Review
0 (0 votes)
Comments Rating 0 (0 reviews)
2FA system breach on Coinbase leaves at least 6 thousand users robbed
Article
2FA system breach on Coinbase leaves at least 6 thousand users robbed
Description
The 2-factor authentication system at Coinbase cryptocurrency exchange turned out to have vulnerabilities. That allowed cybercriminals to steal funds from the wallets of more than 6000 users.
Author
Copyright
HowToFix.Guide
 

About the author

Wilbur Woodham

I was a technical writer from early in my career, and consider IT Security one of my foundational skills. I’m sharing my experience here, and I hope you find it useful.

Leave a Reply

Sending