Coinbase Phishing - Be careful

[Benson Samuel]

Coinbase   
Hi Benson Samuel,

coinbasehack@mailinator.com just sent you a request to pay 732342.34425 BTC (worth ₹21,555,874,551.88 INR) using Coinbase.

Click here to sign in and complete this payment

Kind regards,
The Coinbase Team

Not a very smart way to phish, but possibility of accidental clicks are always there.
Be careful with invoices to a live coinbase account.

[subvolatil]

Coinbase   
Hi Benson Samuel,

coinbasehack@mailinator.com just sent you a request to pay 732342.34425 BTC (worth ₹21,555,874,551.88 INR) using Coinbase.

Click here to sign in and complete this payment

Kind regards,
The Coinbase Team

Not a very smart way to phish, but possibility of accidental clicks are always there.
Be careful with invoices to a live coinbase account.

Lol @mailinator.com wat a noob

[BitCoinDream]

Coinbase   
Hi Benson Samuel,

coinbasehack@mailinator.com just sent you a request to pay 732342.34425 BTC (worth ₹21,555,874,551.88 INR) using Coinbase.

Click here to sign in and complete this payment

Kind regards,
The Coinbase Team

Not a very smart way to phish, but possibility of accidental clicks are always there.
Be careful with invoices to a live coinbase account.

Lol @mailinator.com wat a noob

April 1 joke

[sgk]

Coinbase   
Hi Benson Samuel,

coinbasehack@mailinator.com just sent you a request to pay 732342.34425 BTC (worth ₹21,555,874,551.88 INR) using Coinbase.

Click here to sign in and complete this payment

Kind regards,
The Coinbase Team

Not a very smart way to phish, but possibility of accidental clicks are always there.
Be careful with invoices to a live coinbase account.

Phishing aside, that's very lucrative amount of BTC
They should have at least chosen a viable amount like 20 BTC or something to not make people suspicious.

[Sindelar1938]

Thanks for the heads up, Benson

[rohnearner]

Glad i didn't received it..! just wondering how they got the email address.? did they bought the database or hacked it.?

[Benson Samuel]

Glad i didn't received it..! just wondering how they got the email address.? did they bought the database or hacked it.?

There was a leak and my ID found its way on a pastebin.

It is not really a leak, there is a way to get use user emails through the coinbase api. It is a harmless feature from what I can see.

[BitCoinDream]

Glad i didn't received it..! just wondering how they got the email address.? did they bought the database or hacked it.?

There was a leak and my ID found its way on a pastebin.

It is not really a leak, there is a way to get use user emails through the coinbase api. It is a harmless feature from what I can see.

Mt. Gox user DB leak ?

[Benson Samuel]

Glad i didn't received it..! just wondering how they got the email address.? did they bought the database or hacked it.?

There was a leak and my ID found its way on a pastebin.

It is not really a leak, there is a way to get use user emails through the coinbase api. It is a harmless feature from what I can see.

Mt. Gox user DB leak ?

Coinbase. Not a DB leak, more like a well written script on their API to get use e-mail ID's.

http://pastebin.com/RzWipJFb

[rohnearner]

Glad i didn't received it..! just wondering how they got the email address.? did they bought the database or hacked it.?

There was a leak and my ID found its way on a pastebin.

It is not really a leak, there is a way to get use user emails through the coinbase api. It is a harmless feature from what I can see.

I don't think that is harmless feature..! if anyone can get bulk emails. using CB api, the rate of spam and phishing will only go higher..!

[Benson Samuel]

Glad i didn't received it..! just wondering how they got the email address.? did they bought the database or hacked it.?

There was a leak and my ID found its way on a pastebin.

It is not really a leak, there is a way to get use user emails through the coinbase api. It is a harmless feature from what I can see.

I don't think that is harmless feature..! if anyone can get bulk emails. using CB api, the rate of spam and phishing will only go higher..!

Was just re-reading the article and it seems that these were not picked up from the Coinbase API, but were just invoices sent to all Coinbase customers. It is a nifty feature.
http://blog.coinbase.com/post/81407694500/update-on-coinbase-data-security

We’d also like to address the claim of a “leaked” list of Coinbase emails and user names.  This list (the size of which is less than one half of one percent of Coinbase users) was not the result of a data breach at Coinbase.  This list of emails was likely sourced from other sites - probably Bitcoin related ones.  It’s clear there was no data breach because no other user information is provided.

So, someone just found an e-mail list and sent them all invoices using the Coinbase API.

[rohnearner]

Was just re-reading the article and it seems that these were not picked up from the Coinbase API, but were just invoices sent to all Coinbase customers. It is a nifty feature.
http://blog.coinbase.com/post/81407694500/update-on-coinbase-data-security

We’d also like to address the claim of a “leaked” list of Coinbase emails and user names.  This list (the size of which is less than one half of one percent of Coinbase users) was not the result of a data breach at Coinbase.  This list of emails was likely sourced from other sites - probably Bitcoin related ones.  It’s clear there was no data breach because no other user information is provided.

So, someone just found an e-mail list and sent them all invoices using the Coinbase API.

Hackers job is lot easier than a programmers ...! A programmer code's a program with so much pressure and a hacker jumps in and tells other ,bamm that line of code was wrong...! out of thousands of line it is hard to make sure you are doing everything correct all the time..!
 Long story short: Exchanges should take members security a lil more seriously now , I'm not saying that claims made by CB are false because I didn't received any such Phishing mail and I have a acc/ in CB ..! but they should always remain on their toes when it comes to members security.

[dashingriddler]

Coinbase   
Hi Benson Samuel,

coinbasehack@mailinator.com just sent you a request to pay 732342.34425 BTC (worth ₹21,555,874,551.88 INR) using Coinbase.

Click here to sign in and complete this payment

Kind regards,
The Coinbase Team

Not a very smart way to phish, but possibility of accidental clicks are always there.
Be careful with invoices to a live coinbase account.

Could be a mt gox guy trying to recover their losses with one shot? haha
Just wondering what made him to think you have so many bitcoins though.

[techguy]

732342.34425 BTC (worth ₹21,555,874,551.88 INR)

See he is trying to pay you at cheaper rate ₹21,555,874,551.88 / 732342.34425 = 29,434 Rs. Send a mail back to him to negotiate for better deals .. ha ha..

[Benson Samuel]

732342.34425 BTC (worth ₹21,555,874,551.88 INR)

See he is trying to pay you at cheaper rate ₹21,555,874,551.88 / 732342.34425 = 29,434 Rs. Send a mail back to him to negotiate for better deals .. ha ha..

I sent back a 1 satoshi invoice.