• Latest
Coinbase Says It Foiled a ‘Sophisticated’ Hacking Attack

Coinbase Says It Foiled a ‘Sophisticated’ Hacking Attack

August 9, 2019
ygg sea surpasses 10,000 scholarships in just six months of launch

YGG SEA Surpasses 10,000 Scholarships in Just Six Months of Launch

May 6, 2022
mintable launches industry changing gas free minting service on ethereum

Mintable Launches Industry Changing Gas Free Minting Service on Ethereum

May 1, 2022
5 projects enabling smart contract development on bitcoin

5 Projects Enabling Smart Contract Development on Bitcoin

April 29, 2022
bitcoin atm installed in mexico's senate building

Bitcoin ATM installed in Mexico’s Senate Building

April 27, 2022
cross chain services play a crucial role in facilitating continued adoption of defi applications

Cross-Chain Services Play a Crucial Role in Facilitating Continued Adoption of DeFi Applications

April 26, 2022
justin sun launches usdd, integrating the blockchain world and the real world with the decentralized stablecoin

Justin Sun Launches USDD, Integrating the Blockchain World and the Real World with the Decentralized Stablecoin

April 25, 2022
nfts: the next musical revolution

NFTs: The Next Musical Revolution

April 24, 2022
things you should know before investing in nfts

Things You Should Know Before Investing in NFTs

April 24, 2022
what are wrapped tokens?

What Are Wrapped Tokens?

April 23, 2022
what is the future of ethereum (eth)?

What is the future of Ethereum (ETH)?

April 22, 2022
green gaming

Everything You Need to Know About Play-to-Earn on Algorand in 2022

April 21, 2022
$ape going bananas as rumors of upcoming land sale of bayc metaverse gather momentum

$APE Going Bananas As Rumors of Upcoming Land Sale of BAYC Metaverse Gather Momentum

April 21, 2022
  • Home
  • Coin Market Cap
  • Bitcoin
  • Ethereum
  • Ripple
  • Litecoin
  • Alt Coin
  • Business
  • Trading
  • Mining
CoinNewsDaily
  • Home
  • Coin Market Cap
  • Bitcoin
  • Ethereum
  • Ripple
  • Litecoin
  • Alt Coin
  • Business
  • Trading
  • Mining
No Result
View All Result
  • Home
  • Coin Market Cap
  • Bitcoin
  • Ethereum
  • Ripple
  • Litecoin
  • Alt Coin
  • Business
  • Trading
  • Mining
No Result
View All Result
CoinNewsDaily
No Result
View All Result
Home Business

Coinbase Says It Foiled a ‘Sophisticated’ Hacking Attack

coinnewsdaily by coinnewsdaily
August 9, 2019
in Business
0
Coinbase Says It Foiled a ‘Sophisticated’ Hacking Attack
191
SHARES
1.5k
VIEWS
Share on FacebookShare on Twitter

Related articles

ygg sea surpasses 10,000 scholarships in just six months of launch

YGG SEA Surpasses 10,000 Scholarships in Just Six Months of Launch

May 6, 2022
5 projects enabling smart contract development on bitcoin

5 Projects Enabling Smart Contract Development on Bitcoin

April 29, 2022

Cryptocurrency exchange Coinbase has revealed that it has been targeted by, and foiled, “a sophisticated, highly targeted, thought out attack” aimed to access its systems and presumably to make of with some of the billions of dollars’-worth of cryptocurrency it holds.

In an Aug. 8 blog post that sets out in technical detail how the plot unfolded and how the exchange countered the attempted theft, Coinbase said the hackers used a combination of methods to try and hoodwink staff and access vital systems – methods that included spear phishing, social engineering and browser zero-day exploits.

The attack had started on May 30, with a dozen staff being sent emails that purported to be from Gregory Harris, a Research Grants Administrator at the University of Cambridge. Far from random, these cited the employees’ past histories and requested help with judging projects competing for an award.

Coinbase said:

“This email came from the legitimate Cambridge domain, contained no malicious elements, passed spam detection, and referenced the backgrounds of the recipients. Over the next couple weeks, similar emails were received. Nothing seemed amiss.”

The attackers developed email conversations with several staffers, holding back from sending any malicious code until June 17, when “Harris” sent another email, containing a URL that, when opened in Firefox, would install malware capable of taking over someone’s machine.

Coinbase said that, “within a matter of hours, Coinbase Security detected and blocked the attack.”

The first stage of the attack, the post indicates, first identified the OS and browser on the intended victims’ machines, displaying a “convincing error” to macOS users who were not using the Firefox browser, and prompting them to install the latest version of the app.

Once the emailed URL was visited with Firefox, the exploit code was delivered from a different domain, that had been registered on May 28. It was at this point that the attack was identified, “based on both a report from an employee and automated alerts,” Coinbase said.

Its analysis found that stage two would have seen another malicious payload delivered in the form of a variant of the Mac-targeting backdoor malware called Mokes.

Coinbase explained that there had been two separate Firefox zero-day exploits utilized in the attack: “one that allowed an attacker to escalate privileges from JavaScript on a page to the browser (CVE-2019–11707) and one that allowed the attacker to escape the browser sandbox and execute code on the host computer (CVE-2019–11708).”

Notably, the former was discovered by Samuel Groß of Google’s Project Zero at the same time as the attacker, though Coinbase played down the likelihood that the hacking team had gained the information on the vulnerability via that source. Groß addresses that in a Twitter thread.

In another sign of the sophistication of the hacking team – labeled by Coinbase as CRYPTO-3 or HYDSEVEN – it took over or created two email accounts and created a landing page at the University of Cambridge.

Coinbase said:

“We don’t know when the attackers first gained access to the Cambridge accounts, or whether the accounts were taken over or created. As others have noted, the identities associated with the email accounts have almost no online presence and the LinkedIn profiles are almost certainly fake.”

After discovering the single affected computer at the company, Coinbase said it revoked all credentials on the machine, and locked all the staffer’s accounts.

“Once we were comfortable that we had achieved containment in our environment, we reached out to the Mozilla security team and shared the exploit code used in this attack,” the exchange said. “The Mozilla security team was highly responsive and was able to have a patch out for CVE-2019–11707 by the next day and CVE-2019–11708 in the same week.”

Coinbase also contacted Cambridge University to report and help fix the issue, as well as to gain more information on the attacker’s methods.

Coinbase concluded:

“The cryptocurrency industry has to expect attacks of this sophistication to continue, and by building infrastructure with excellent defensive posture, and working with each other to share information about the attacks we’re seeing, we’ll be able to defend ourselves and our customers, support the cryptoeconomy, and build the open financial system of the future.”

Coinbase CEO Brian Armstrong via CoinDesk archives



Credit: Source link

Tags: access vital systemsBrian ArmstrongBusinessCambridge UniversityCryptoCrypto Businessonline presence
Share76Tweet48
Previous Post

Senior CFTC Official Who Set Bitcoin Futures Policy Is Leaving: Report

Next Post

This Tiny Bank Gave Bitcoin to Its Entire Staff. Now It‘s Taking Crypto Clients

coinnewsdaily

coinnewsdaily

CoinNewsDaily.com is an online Crypto Coin News Website that aims to provide latest trendy news from market and around the world.

Related Posts

ygg sea surpasses 10,000 scholarships in just six months of launch
Alt Coin

YGG SEA Surpasses 10,000 Scholarships in Just Six Months of Launch

May 6, 2022
5 projects enabling smart contract development on bitcoin
Alt Coin

5 Projects Enabling Smart Contract Development on Bitcoin

April 29, 2022
cross chain services play a crucial role in facilitating continued adoption of defi applications
Alt Coin

Cross-Chain Services Play a Crucial Role in Facilitating Continued Adoption of DeFi Applications

April 26, 2022
justin sun launches usdd, integrating the blockchain world and the real world with the decentralized stablecoin
Alt Coin

Justin Sun Launches USDD, Integrating the Blockchain World and the Real World with the Decentralized Stablecoin

April 25, 2022
what are wrapped tokens?
Bitcoin

What Are Wrapped Tokens?

April 23, 2022
what is the future of ethereum (eth)?
Alt Coin

What is the future of Ethereum (ETH)?

April 22, 2022
Load More
Next Post
This Tiny Bank Gave Bitcoin to Its Entire Staff. Now It‘s Taking Crypto Clients

This Tiny Bank Gave Bitcoin to Its Entire Staff. Now It‘s Taking Crypto Clients

Categories

  • Alt Coin
  • Bitcoin
  • Business
  • Ethereum
  • ICO
  • Litecoin
  • Mining
  • NFT
  • Ripple
  • Tech
  • Trading

What New here?

  • YGG SEA Surpasses 10,000 Scholarships in Just Six Months of Launch
  • Mintable Launches Industry Changing Gas Free Minting Service on Ethereum
  • 5 Projects Enabling Smart Contract Development on Bitcoin

Subscribe to Get More!

Loading
  • About Us
  • Contact Us
  • Privacy & Policy

© 2018-2021 CoinNewsDaily.com by CoinNewsDaily Inc. Crafted with Love by iFtiDev

No Result
View All Result
  • Home
  • Coin Market Cap
  • Bitcoin
  • Ethereum
  • Ripple
  • Litecoin
  • Alt Coin
  • Business
  • Trading
  • Mining

© 2018-2021 CoinNewsDaily.com by CoinNewsDaily Inc. Crafted with Love by iFtiDev

  • bitcoinBitcoin(BTC)$23,302.000.83%
  • ethereumEthereum(ETH)$1,611.240.25%
  • tetherTether(USDT)$1.000.01%
  • binancecoinBNB(BNB)$308.460.62%
  • rippleXRP(XRP)$0.413185-0.10%
  • cardanoCardano(ADA)$0.3865481.24%
  • dogecoinDogecoin(DOGE)$0.0876031.19%
  • matic-networkPolygon(MATIC)$1.176.48%
  • solanaSolana(SOL)$24.660.67%
  • okbOKB(OKB)$36.290.98%
  • polkadotPolkadot(DOT)$6.601.73%
  • shiba-inuShiba Inu(SHIB)$0.0000122.06%
  • litecoinLitecoin(LTC)$88.861.73%
  • tronTRON(TRX)$0.0642153.76%
  • daiDai(DAI)$1.00-0.03%
  • cosmosCosmos Hub(ATOM)$13.443.14%
  • chainlinkChainlink(LINK)$7.412.41%
  • leo-tokenLEO Token(LEO)$3.836.27%
  • moneroMonero(XMR)$179.874.32%
  • ethereum-classicEthereum Classic(ETC)$22.150.39%
  • bitcoin-cashBitcoin Cash(BCH)$135.391.11%
  • stellarStellar(XLM)$0.0932611.01%
  • crypto-com-chainCronos(CRO)$0.0818420.80%
  • filecoinFilecoin(FIL)$5.38-0.38%
  • algorandAlgorand(ALGO)$0.2574004.90%
  • vechainVeChain(VET)$0.0251135.13%
  • internet-computerInternet Computer(ICP)$6.094.11%
  • aaveAave(AAVE)$87.93-0.96%
  • eosEOS(EOS)$1.122.99%
  • theta-tokenTheta Network(THETA)$1.126.93%
  • elrond-erd-2MultiversX(EGLD)$45.012.96%
  • tezosTezos(XTZ)$1.122.44%
  • paxos-standardPax Dollar(USDP)$1.00-0.29%
  • bitcoin-cash-svBitcoin SV(BSV)$44.642.66%
  • huobi-tokenHuobi(HT)$5.050.79%
  • havvenSynthetix Network(SNX)$2.556.51%
  • iotaIOTA(MIOTA)$0.2436945.24%
  • pancakeswap-tokenPancakeSwap(CAKE)$4.031.68%
  • zcashZcash(ZEC)$46.820.24%
  • makerMaker(MKR)$672.362.65%
  • neoNEO(NEO)$8.271.03%
  • dashDash(DASH)$52.113.14%
  • zilliqaZilliqa(ZIL)$0.0295446.31%
  • compound-governance-tokenCompound(COMP)$59.0710.98%
  • basic-attention-tokenBasic Attention(BAT)$0.2655111.46%
  • nemNEM(XEM)$0.0400234.54%
  • Elrond ERDElrond ERD(ERD)$0.0259290.00%
  • kusamaKusama(KSM)$36.526.20%
  • bitcoin-goldBitcoin Gold(BTG)$17.77-1.30%
  • qtumQtum(QTUM)$2.733.32%
  • wavesWaves(WAVES)$2.8215.99%
  • sushiSushi(SUSHI)$1.353.34%
  • ftx-tokenFTX(FTT)$1.89-21.50%
  • yearn-financeyearn.finance(YFI)$7,737.442.87%
  • golemGolem(GLM)$0.2505514.76%
  • omisegoOMG Network(OMG)$1.513.03%
  • ontologyOntology(ONT)$0.2204431.64%
  • digibyteDigiByte(DGB)$0.0111100.11%
  • umaUMA(UMA)$2.070.86%
  • ethlendAave [OLD](LEND)$0.53-3.08%
  • UniswapUniswap(UNI)$2.4438.80%