SlowMist CISO: Coinbase Commerce's asset recovery page sitemap also has flaws and is at risk of phishing attacks.

PA一线
PA一线

PANews reported on March 19 that after SlowMist founder Yu Xian disclosed the risks of Coinbase Commerce's asset recovery page directly requiring users to enter plaintext mnemonic phrases, SlowMist's Chief Information Security Officer 23pds added that the page's sitemap also has flaws. Malicious attackers can easily use tools like ResourcesSaver to download the front-end code and deploy similar websites. If these websites are combined with domains like Coinbase for phishing attacks, users can easily fall for the scam.

Share to:

Author: PA一线

This content is for market information only and is not investment advice.

Follow PANews official accounts, navigate bull and bear markets together
Telegram Discussion Group
Telegram News Channel
@PANews
Recommended Reading
PA一线

PA一线

A California court dismissed a Coinbase user's objection to an IRS subpoena.
PA一线

PA一线

SlowMist Cosine questions Coinbase's page that requires users to enter plaintext mnemonic phrases: Incomprehensible.
PA一线

PA一线

Coinbase lists Katana (KAT)
PA一线

PA一线

Coinbase briefly suspends NIGHT perpetual contract trading matching
PA一线

PA一线

Coinbase is experiencing access problems in the Philippines; the official recommendation is to try other networks.
PA一线

PA一线

A man impersonating a Coinbase employee stole $16 million in cryptocurrency from approximately 100 users.

Popular Articles

Industry News
Market Trends
Curated Readings
Subscribe
PANews App
24/7 blockchain news tracking and in-depth analysis.
Download PANews App
App StoreGoogle Play