On-chain investigator ZachXBT not too long ago shared knowledge revealing that Coinbase customers lose greater than $300 million yearly because of social engineering scams.
Over the previous few months, quite a few customers have taken to social media to report sudden account restrictions, which ZachXBT attributed to the alternate’s aggressive threat fashions and a failure to mitigate ongoing scams.
The investigation, carried out in collaboration with a researcher recognized as Tanuki42, analyzed Coinbase withdrawals and direct messages from victims to estimate the extent of thefts throughout a number of blockchain networks.
Their knowledge advised that unhealthy actors stole no less than $65 million from Coinbase customers between December 2024 and January 2025. Nevertheless, they acknowledge that this determine is probably going an underestimation, because it doesn’t account for Coinbase assist tickets or regulation enforcement reviews.
One documented case concerned a sufferer who misplaced roughly $850,000. The stolen funds had been traced to a consolidation tackle tied to greater than 25 different victims, which the report labeled “coinbase-hold.eth.”
Social engineering scams
Social engineering scams usually contain attackers contacting victims through spoofed telephone numbers and utilizing private data obtained from personal databases to achieve their belief.
Victims are advised that their Coinbase accounts have been topic to unauthorized login makes an attempt. The scammers then ship a fraudulent electronic mail that seems to be from Coinbase, containing a pretend case ID for verification.
When instructed to switch funds to a Coinbase Pockets and allowlist an tackle, victims unknowingly give the scammers management over their property. The scams are additional facilitated by pretend cloned Coinbase web sites and subtle phishing panels marketed in Telegram channels.
In accordance with the report, two foremost teams orchestrate the scams: people from ‘The Com’ and cybercriminals primarily based in India, who primarily goal US prospects.
ZachXBT additionally highlighted a discrepancy in Coinbase’s safety suggestions. Whereas Coinbase staff have warned customers towards utilizing VPNs to stop being flagged as suspicious, risk actors explicitly block VPN entry to phishing websites, enabling them to keep away from detection.
In accordance with Chainalysis, scammers stole $4.6 billion from victims by social engineering assaults between 2023 and 2024.
Alleged incidents
The report alleged that Coinbase had skilled a number of safety incidents and didn’t publicly tackle them. These embody hacks involving outdated API keys used for tax software program, a vulnerability permitting verification codes to be despatched to any electronic mail, no matter account standing, and a $15.9 million theft from Coinbase Commerce in 2023.
The investigators added that the stolen funds are sometimes not flagged in compliance instruments, even after weeks of theft. Victims often report issue in reaching Coinbase buyer assist, significantly exterior US enterprise hours.
The report additionally highlighted that competing exchanges, together with Kraken, OKX, and Binance, don’t face comparable points.
To unravel these points, ZachXBT outlined a number of measures Coinbase might implement to mitigate these scams, similar to making telephone numbers optionally available for superior customers who use authentication apps or safety keys, introducing a newbie/aged person account kind that features restrictions on withdrawals, with improved buyer assist and outreach.
As well as, the on-chain investigator advised growing group engagement by weblog posts on fund restoration, full-time incident response, actively flagging theft addresses, and blocking phishing domains.
Regardless of safety issues, the report acknowledged that Coinbase has maintained a number of strengths, together with stablecoin on/off-ramps, the event of the Base blockchain, asset restoration instruments, authorized opposition to the US Securities and Change Fee, and its custody product.
Nevertheless, the report argued that extra will be carried out to stop monetary losses for customers.
With losses reportedly reaching tens of hundreds of thousands month-to-month, Coinbase faces growing strain to deal with safety vulnerabilities and enhance person safety. Competing exchanges haven’t skilled comparable ranges of focused scams, elevating questions in regards to the adequacy of Coinbase’s present safety measures.
Talked about on this article
