Hackers exploit 2FA flaw to steal crypto from 6,000 Coinbase users

Share on facebook
Share on twitter
Share on linkedin
Share on reddit
Share on email

Coinbase is working to reimburse the customers for the funds they have lost and help them regain control of their accounts.

Coinbase Global Inc. has sent a breach notification letter to its customers affected by the cyberattack on the widely used cryptocurrency exchange. As per the letter, hackers managed to steal accounts of at least 6,000 Coinbase customers.

About the Hack

According to the letter posted on the Attorney General of California’s website, the hack occurred between March and May 20, 2021. The letter seen by Hackread.com states that unauthorized third parties identified and exploited a vulnerability in the SMS account recovery process of Coinbase and were able to gain access to the accounts. They transferred funds to crypto wallets that weren’t associated with the exchange, Coinbase clarified.

In this incident, for customers who use SMS texts for two-factor authentication, the third party took advantage of a flaw in Coinbase’s SMS Account Recovery process in order

Read the article