Coinbase Commerce page requests seed phrases, raising security concerns
A Coinbase subdomain linked to its Commerce tool reportedly directed users to a withdrawal page asking to enter their seed phrases, raising concerns among security observers.
Security researchers have raised concerns about a Coinbase-associated Commerce page that appeared to prompt users to enter wallet recovery phrases, warning that such a flow could normalize behavior commonly exploited in phishing scams.
The page has circulated widely on social media after being flagged by the founder of the blockchain security platform SlowMist, Yu Xian, widely known as Cos.
“I’m really puzzled why Coinbase would have a page like this, directly asking users to input their plaintext mnemonic phrases for asset recovery,” Yu wrote in an X post on Wednesday, adding: “Such an insecure practice is simply unbelievable.”
Source: Cointelegraph →Related News
- 49 minutes ago
Nasdaq-listed Opera proposes 160M CELO deal to replace cash payments
- 3 hours ago
OP_NET launches Bitcoin DeFi push without bridges or wrapped BTC
- 3 hours ago
Hacked crypto tokens drop 61% on average and rarely recover, Immunefi report say...
- 3 hours ago
Hacked crypto tokens drop 61% on average and rarely recover, Immune report says
- 3 hours ago
Apex Group’s Tokeny taps Polygon to debut chain for compliant tokenized RWAs