Ninjastic
PostEdited versionsQuotes to this post
Post
Topic
Board Bitcoin Discussion
Re: Got hacked and robbed. My mistake for keeping coins on exchange
by
Mahanton
on 31/10/2017, 13:16:09 UTC
Quote from: rushingfn on October 31, 2017, 10:59:13 AM
Quote from: eckmar on October 31, 2017, 10:55:13 AM
Quote from: rushingfn on October 31, 2017, 10:49:45 AM
My coinbase got hacked today. I got a message on my phone saying that my password had changed. I attempted to follow instructions to stop it, but by the time I had, it was too late and the theif emptied out my hot wallet. The only saving grace was that coinbase has vaults which give 48 hour delay. I wish that I would have transferred more coins to the vault as they were protected. Coinbase has some serious vulnerabilities, but whoever the thief was was able to login from my IP and was able to login to my email despite the fact that I had just changed my password. Be careful out there. Cold wallet your coins.

It's never a good idea to store coins on exchange. However I doubt Coinbase has serious vulnerabilities. What happened is that you most likely got infected with a RAT. Its not a problem for the hacker to log in with your IP and your email really. Ways to prevent this is usage of 2FA

I do use 2FA. I need google authenticator every login. I wish it would have been SMS. I'm not sure how this happened. I just wish I would have kept more of them in a vault, or sold my hot wallet contents earlier.
Quiet odd that you didnt activate that sms verification. Ive been using coinbase and this security features ive been using which it do send codes into my mobile phone number  and then an email verification before you would able to log in completely.I suspect theres a RAT on your pc which the hacker did able to know all the credentials needed for accessing your account.