Security News > 2021 > July > Coinbase Users Face Ongoing Phishing Attacks
Coinbase is the largest exchange in the U.S., and researchers have detected numerous phishing campaigns against Coinbase users.
Researchers at anti-phishing firm INKY have discovered dozens of current phishing campaigns targeting Coinbase users.
If targets were fooled, and clicked the presented button, they were sent to a perfect copy of the real Coinbase login page.
Coinbase, along with most authorities, urges users to employ two-factor authentication.
Evilginx uses a Nginx HTTP server to proxy real websites to phishing victims, capturing any 2FA token that the website may send as a browser cookie to the client.
Phishing remains one of - if not the - most prolific criminal attack vectors, and phishing the user may seem a softer target than hacking the exchange.
News URL
Related news
- DOJ, Microsoft seize 107 domains used in Russia's Star Blizzard phishing attacks (source)
- GitHub, Telegram Bots, and ASCII QR Codes Abused in New Wave of Phishing Attacks (source)
- Astaroth Banking Malware Resurfaces in Brazil via Spear-Phishing Attack (source)
- Midnight Blizzard Escalates Spear-Phishing Attacks On Over 100 Organizations (source)
- Windows infected with backdoored Linux VMs in new phishing attacks (source)