Go to listing page

Cryptocurrency Platforms Witness Another Round of Cyber Threats

Cryptocurrency Platforms Witness Another Round of Cyber Threats
Since the recent boom in the prices of cryptocurrencies, cybercriminals are continuously targeting cryptocurrency platforms and exchanges, using a wide variety of attack tactics. Bitdefender Antispam Lab researchers have discovered an ongoing phishing campaign targeting Coinbase platform users in an attempt to steal their account credentials and drain their cryptocurrency wallets.

Latest telemetry

Since mid-February, the campaign has targeted over 25,000 Coinbase users.
  • The fraudulent correspondence originated from India (69%), Brazil (13.73%), the U.S. (10%), and Japan (2.33%).
  • These phishing emails have targeted users from South Korea (54.72%), Sweden (12.53%), Ireland (7%), Japan (6.78%), the U.S. (5.12%), Great Britain (2.81%), and Canada (2.16%).
  • The phishing emails contained fake notifications, warning recipients of unusual activity in their account, requiring immediate action/verification from users who wish to regain access to the platform.
  • The fake login URL asks users to enter their credentials, which are then used by attackers to hijack the accounts.

Recent attacks on cryptocurrency platforms

Attacks on cryptocurrency trading platforms have risen in the past few months. In addition to phishing and impersonation attacks, attackers are using other attacks such as DDoS and data theft.
  • Most recently, crypto lending platform BlockFi was spammed with fake sign-ups and abusive language.
  • Earlier to this, Tether had suffered a data breach and forged documents were identified circulating online.
  • Last month, EXMO cryptocurrency exchange servers had suffered a massive DDoS attack, which resulted in a temporary suspension of their services.


Due to the looming threat of hacks and cyberattacks against cryptocurrency platforms, users should be wary of all kinds of threats. Experts recommend staying away from unsolicited correspondence and double-checking web URLs before signing in.

Cyware Publisher