.png?sv=2022-11-02&spr=https&st=2025-10-19T20%3A36%3A02Z&se=2025-10-19T20%3A48%3A02Z&sr=c&sp=r&sig=5Nm3yM19XdBwXhNO9Heg1gxEDVR%2FBg2dwhWAP4IHphs%3D)
Actions to Take Following Coinbase Phishing Attacks, Data Breach
Coinbase customers should be on high alert following developments affecting the cryptocurrency exchange.
BlackCloak has observed an increase in phishing attacks targeting Coinbase customers. The phishing attacks have come via email and text.
Customers have reportedly received messages, via email and SMS, from bad actors impersonating Coinbase representatives. A common variation includes an email titled "Migrate to Coinbase Wallet," which falsely claims Coinbase customers must transition to self-custodial wallets. In some cases, the bad actors appear to have access to legitimate account details, suggesting a potential insider threat.
Additionally, Coinbase recently experienced a data breach where less than 1% of customers were affected. However, the information gathered from the breach included sensitive information such as Social Security numbers, phone numbers, home and email addresses and masked bank account numbers.
If you are a Coinbase customer, it's highly recommended you take the proper precautions to ensure your accounts, cryptocurrencies and personal information are secured.
What To Do About This?
REMINDER: No legitimate organization will ever ask you for sensitive information to remedy a problem. If you receive a text or an email asking you for personal data or login credentials, do not engage with it, as it is likely a scam
Forward any suspicious messages to the BlackCloak Concierge team, and our staff will tell you whether any message you receive is legitimate
Consult our guide to learn about cyber scam red flags to keep an eye out for when receiving a message
Place a credit freeze and fraud alert on your accounts
Activate BlackCloak's new credit monitoring and identity theft features, which can be found in your mobile application. These features allow registered users to monitor credit scores in real-time, receive real-time alerts regarding changes to their credit profile, and sign up for identity theft restoration and insurance protection. To learn how to sign up, please watch this demo
Use strong, unique passwords for all accounts and enable multifactor authentication
Steam Data Breach Potentially Impacts 89 Million Users
The video game platform Steam has allegedly experienced a data breach, and if you or a loved one has an account, it's highly recommended you take action as soon as possible.
A threat actor claimed possession of a dataset containing 89 million Steam user records, and is attempting to sell the information on a dark web forum. The breach originated from the third-party communications provider Twilio, not Steam itself, but may expose users to credential stuffing and phishing attacks.
Steam accounts can hold potentially sensitive information, including payment information. Thus, take the following steps to ensure any Steam accounts are protected.
What To Do About This?
Change your password as soon as possible. Never reuse any passwords and store them in a password manager for safe keeping
Enable multifactor authentication on your accounts. This includes the platform's own Steam Guard Mobile Authenticator
Follow our guide to learn how to change your passwords and enable multifactor authentication on your Steam account
Do not save payment cards within Steam, and consider using a virtual payment card when making purchases
Be on the lookout for any suspicious messages. Bad actors may pose as representatives from Steam to try and trick you or your loved ones into turning over sensitive information. Remember, no legitimate organization will ever ask you for personal information, login credentials, or money to remedy a problem
If you have any additional questions, email us at [email protected] or schedule a Concierge Session via the BlackCloak app Support tab.
Here for you,
The BLACKCLOAK Team