A new and alarming phishing scam is targeting Coinbase users, with attackers posing as official support agents during live phone calls. These scammers use social engineering tactics to sound convincing, often warning of “suspicious activity” on your account. In reality, they walk users through a fake security process designed to steal login credentials and two-factor authentication (2FA) codes—giving them instant access to your account.
What makes this scam particularly dangerous is its personal touch. Unlike email phishing, phone calls create urgency and trust, making it easier for scammers to manipulate even cautious users.
How to Protect Yourself:
-
Coinbase never makes unsolicited calls. If someone calls claiming to be from Coinbase, hang up.
-
Never share login info or 2FA codes over the phone.
-
Use the official Coinbase app or website to verify messages or issues.
-
Enable stronger security features, like hardware key-based 2FA.
-
Report suspicious calls directly to Coinbase’s support team.
As crypto scams become more sophisticated, staying alert and skeptical is your best defense. If something feels off—trust your instincts. It’s better to double-check than risk losing your funds.