A surge in phishing emails is hitting crypto users, with scammers posing as Coinbase and Gemini to steal funds.
These fraudulent messages instruct recipients to create self-custodial wallets using pre-generated recovery phrases—allowing attackers to seize control once assets are deposited.
Some victims have shared screenshots of emails allegedly from Coinbase, warning them of a class-action lawsuit and urging them to switch to a new wallet before an April 1 deadline. The email provides a real download link for Coinbase Wallet but tricks users into using a compromised recovery phrase. Gemini users have reported nearly identical scams, with emails falsely citing a court ruling as the reason for the wallet migration.
Both exchanges have denied any connection to these emails. Coinbase has reminded users it never provides recovery phrases, while Gemini has yet to issue a formal statement.
The phishing campaign follows the SEC’s recent decision to drop lawsuits against both platforms, a fact scammers are exploiting to make their messages seem legitimate. Meanwhile, blockchain security firm CertiK has warned that phishing remains the biggest cybersecurity threat in crypto, accounting for over $1 billion in losses across nearly 300 incidents last year.
Beyond email scams, hackers are also targeting crypto executives directly. Reports indicate that at least three company founders recently thwarted attempts by North Korean hackers posing as potential partners. The attackers invited them to Zoom meetings, then sent fake links disguised as audio fixes, which were actually malware-laden traps.
French police have arrested more than a dozen individuals, including minors, in connection with a string of crypto-related kidnapping cases that have shaken Paris in recent weeks.
A bizarre cyberattack involving the hacked Instagram account of hip-hop group Migos has surfaced, allegedly as part of an attempted extortion scheme aimed at Solana co-founder Raj Gokal.
An Italian man narrowly escaped a harrowing ordeal in New York after being kidnapped and tortured in an alleged scheme to extract access to his digital wealth.
A federal judge has thrown out major fraud charges against Avraham Eisenberg, the trader accused of draining millions from DeFi platform Mango Markets, citing jurisdictional flaws in the government’s case.