Threat actors are breaching Coinbase accounts through a phishing campaign, bypassing two-factor authentication (2FA) to steal from users’ crypto balances. They use spoofed emails imitating Coinbase and a variety of underhanded tactics to gain credentials and control over accounts. An advanced structure lets them utilize 2FA relay methods to bypass Coinbase’s multi-factor authentication. The stolen funds are then dispersed through multiple transactions across ‘burner’ accounts in an attempt to hide their trail.
3M Student-Athletes, College Coaches’ Records Exposed
Over 3 million records of student-athletes and college coaches were exposed in an unencrypted, non-password-protected database, risking their personal information and security.
