I had cellphone a for the coinbase password recovery.
I had cellphone b unknown to all with the microsoft auth.
cell phone a was ported
password was changed as cell phone allowed for that
but email and funds need the microsoft auth on cell phone b
after this attack. I went with a different setup for safety and no longer have 35k on coinbase.
I was prepping to pay for
36x pny a2000
2x pny a5000
2x 12 card cases
4x pny a2000
thus funds were on the trigger.
Busy running around and was in New York when hack happened took me 3 1/ hours to get back to my home to recover coinbase.
everyone with coin base should look ar this on their accounts you can see if someone is trying to sign in.
https://www.coinbase.com/settings/account_activitysignout session web 198.54.133.76 United States 5 days ago
signout session web 198.54.133.76 United States 5 days ago
signout session web 198.54.133.76 United States 5 days ago
signout session web 198.54.133.76 United States 5 days ago
signout session web 198.54.133.76 United States 5 days ago
signout session web 198.54.133.76 United States 5 days ago
password reset completed web 198.54.133.76 United States 5 days ago
password reset requested web 198.54.133.76 United States 5 days ago
signin failure api 187.11.158.232 Brazil 7 days ago
signin failure api 187.11.158.232 Brazil 7 days ago
they first came at it from Brazil
and got in from usa
notice the six signouts
each one means they tried guessing the microsoft 6 digit code 2 times as 3 misses lock you out.
so 6 x 2 was 12 shots at 1,000,000 to 1 and by by coins.
the 1,000,000 to one is the random 6 digit microsoft app
given more time they may have grabbed the coins.
the yubi is better you need the key and can not fake it (we hope)