Security News > 2021 > July > Coinbase Users Face Ongoing Phishing Attacks
Coinbase is the largest exchange in the U.S., and researchers have detected numerous phishing campaigns against Coinbase users.
Researchers at anti-phishing firm INKY have discovered dozens of current phishing campaigns targeting Coinbase users.
If targets were fooled, and clicked the presented button, they were sent to a perfect copy of the real Coinbase login page.
Coinbase, along with most authorities, urges users to employ two-factor authentication.
Evilginx uses a Nginx HTTP server to proxy real websites to phishing victims, capturing any 2FA token that the website may send as a browser cookie to the client.
Phishing remains one of - if not the - most prolific criminal attack vectors, and phishing the user may seem a softer target than hacking the exchange.
News URL
Related news
- Ransomware gangs pose as IT support in Microsoft Teams phishing attacks (source)
- Microsoft Teams phishing attack alerts coming to everyone next month (source)
- How to Prevent Phishing Attacks with Multi-Factor Authentication (source)
- Microsoft: Hackers steal emails in device code phishing attacks (source)
- Darktrace: 96% of Phishing Attacks in 2024 Exploited Trusted Domains Including SharePoint & Zoom Docs (source)
- Phishing attack hides JavaScript using invisible Unicode trick (source)
- FatalRAT Phishing Attacks Target APAC Industries Using Chinese Cloud Services (source)
- Hackers Exploit AWS Misconfigurations to Launch Phishing Attacks via SES and WorkMail (source)
- YouTube warns of AI-generated video of its CEO used in phishing attacks (source)