Security
Headlines
HeadlinesLatestCVEs

Headline

How Coinbase Phishers Steal One-Time Passwords

A recent phishing campaign targeting Coinbase users shows thieves are getting cleverer about phishing one-time passwords (OTPs) needed to complete the login process. It also shows that phishers are attempting to sign up for new Coinbase accounts by the millions as part of an effort to identify email addresses that are already associated with active accounts.

Krebs on Security
#A Little Sunshine#The Coming Storm#Web Fraud 2.0#alex holden#Bleeping Computer#Coinbase#Coinbase phishing#Hold Security#Lawrence Abrams#one-time password phishing

Related news

The Rise of One-Time Password Interception Bots

In February, KrebsOnSecurity wrote about a novel cybercrime service that helped attackers intercept the one-time passwords (OTPs) that many websites require as a second authentication factor in addition to passwords. That service quickly went offline, but new research reveals a number of competitors have since launched bot-based services that make it relatively easy for crooks to phish OTPs from targets.

Krebs on Security: Latest News

Feds Charge Five Men in ‘Scattered Spider’ Roundup