A crypto sleuth has claimed that Coinbase users had more than $65 million stolen from them in the past two months. The user, who goes by the handle ZachXBT, suggested that the cryptocurrency exchange platform had failed to stop its users from losing over $300 million per year to social engineering scams.
He mentioned that the estimated $65 million is probably way lower than the real number since it doesn’t include cases reported to Coinbase support or the police.
1/ Over the past few months I imagine you have seen many Coinbase users complain on X about their accounts suddenly being restricted.
This is the result of aggressive risk models and Coinbase’s failure to stop its users losing $300M+ per year to social engineering scams. pic.twitter.com/PjtX7vmjqc
— ZachXBT (@zachxbt) February 3, 2025
Working with another user named tanuki42_, ZachXBT reported on X that alleged victims had reached out to them in January after losing more than $850,000. The scammer had reportedly called the user from a spoofed phone number and used personal information obtained from a private database to gain their trust. They then told the victim that their account had multiple unauthorized login attempts, despite the fact that Coinbase does not call its users.
They then reportedly sent a message from a spoofed email that looked like it was from Coinbase, complete with a fake Case ID to make it seem legitimate. They told the victim to transfer their funds to a Coinbase Wallet and whitelist an address while “support” supposedly verified their account’s security. He identified that the two main groups conducting these scams were located in India, and were both primarily targeting US customers.
ZachXBT added: “Scammers clone the Coinbase site nearly 1:1 and allow the scammers to send different prompts to the target via spoofed emails using panels.
“There are many Telegram channels where scammers advertise them.”
He then went onto criticize the platform, stating: “Coinbase needs to urgently make changes as more and more users are being scammed for tens of millions every month.
“Other major exchanges do not have similar panels created by scammers for fraud.”
13/ Coinbase needs to urgently make changes as more and more users are being scammed for tens of millions every month.
Other major exchanges do not have similar panels created by scammers for fraud.
While the victims are partially responsible it’s unreasonable to expect… pic.twitter.com/KJJf8kFdlB
— ZachXBT (@zachxbt) February 3, 2025
He claimed that most of the time, Coinbase doesn’t even report the scammers’ addresses, even when the thefts have been happening for weeks.
“A Coinbase employee told people on X to stop using VPNs to avoid being flagged as suspicious, meanwhile threat actors will explicitly block VPNs from phishing sites,” ZachXBT pointed out. “This shows Coinbase’s failure to diagnose the actual problem.”
The onchain expert urged Coinbase leadership to step up their game against social engineering attacks. They’re suggesting changes like making phone number entry optional for KYC-verified users, introducing a beginner account type that limits withdrawals, and stepping up community outreach to better protect users.
ReadWrite has reached out to Coinbase for comment.
Featured image: Canva