Dash Jackson (@dashjackson@techhub.social)

18d

Customer lost $350,000 in September 2022 to a phishing attack from a scammer that the customer said had “confidential information that could have only been obtained with direct access to Coinbase’s database”.

#crypto #cryptocurrency #Coinbase

14. Mr. Spilker took many protective measures to keep his account safe. He proactively took steps to secure his account with multifactor authentication safeguards and even purchased and used Yubikey, a hardware authentication device that is supposed to prevent phishing thefts. 15. Mr. Spilker also took adequate steps to protect his account information. He did not share his private keys or password with any third parties.

ALT

42. The thief called Spilker on his cell phone and claimed to be an agent calling on behalf Coinbase to report a security breach. Mr. Spilker was suspicious so requested confirmation that the caller was truly a Coinbase representative. 43. The thief responded by reciting confidential information that could have only been obtained with direct access to Coinbase’s database. 44. Specifically, the thief recited Spilker’s transaction history to him as well as certain account specifications that should have only been known to Coinbase. 45. The thief reported that there was a compromise to his account and stated that Coinbase would convert his Ethereum coins to cbETH in order to protect them.

ALT

1 0 0 View Post & Replies See Original

18d

Coinbase didn’t prevent the suspicious transfers, allegedly wiped customer’s transaction history, blamed the customer for the loss, then refused to reimburse. Arbitration concluded with $0 reimbursement.

#crypto #cryptocurrency #Coinbase

56. To add insult to injury, Coinbase wiped clean the transaction history on his account. This was either reckless destruction or a deliberate tactic to keep Spilker from discovering the full extent of his losses. Case 3:25-cv-02573-LB Document 1 Filed 03/14/25 Page 26 of 134 13 57. Perhaps even more damaging is that it left Mr. Spilker without the requisite documentation to accurately file his taxes. 58. Coinbase went to great lengths to cover up its fraud. Coinbase dismissed his concerns, suggesting that he was conflating the cbETH launch (which permitted unwrapping) with the actual merge (which would permit unstaking). 59. Following a demand for repayment, Coinbase informed Mr. Spilker on February 14, 2023 that it would not reimburse his account, and blamed Spilker for supposedly taking inadequate safety measures.

ALT

Coinbase’s Failures to Take Reasonable Care 61. Coinbase should have prevented these unauthorized transactions based solely on the unusual timing of the consumer having his credentials changed, a demand from Mr. Spilker to lock his account, the previously unused wallet where the funds were sent and the unstaking of assets that were supposedly immobilized. 62. Other cryptocurrency exchanges do not allow these same criminal transfers because those exchanges use standard security measures which include freezing an account when certain actions – such as password changes and attempted transfers to newly linked wallets – occur, until the exchange verifies an account holder’s identity.

ALT

3 0 0 View Post & Replies See Original

18d

@molly0xfff people clammor for a centralized authority despite using crypto. It's insane what a grift it has become.

0 0 0 View Post & Replies See Original