退休的藝術家在加密貨幣中損失了200萬美元的coinbase模仿騙局

現年67歲的退休藝術家埃德·蘇曼（Ed Suman）在跌倒了一個共同的模仿者騙局後損失了200萬美元的加密貨幣。

Ed Suman, a 67-year-old retired artist, fell victim to a crypto scam that began with a text message from Coinbase and ultimately saw him lose an estimated $2 million in Bitcoin and Ether.

現年67歲的退休藝術家埃德·蘇曼（Ed Suman）成為加密騙子騙局的受害者，該騙局始於Coinbase的短信，最終看到他損失了估計的200萬美元的比特幣和Ether。

The scam unfolded in March 2025, when Suman received a text message from what appeared to be Coinbase, warning him of suspicious activity on his account. Shortly after, a man named Brett Miller phoned Suman, introducing himself as a member of Coinbase security.

騙局於2025年3月展開，當時蘇曼收到了看來是共同案件的短信，警告他對他的帳戶有可疑的活動。此後不久，一個叫布雷特·米勒（Brett Miller）的人打電話給蘇曼（Suman），將自己介紹為Coinbase Security的成員。

The caller expressed concern over Suman’s wallet being compromised and instructed him to enter his seed phrase into a web address provided. The web address led to a site that looked exactly like Coinbase, complete with the same branding, login format, and support sections. However, the site also asked for full access credentials.

呼叫者對蘇曼的錢包受到妥協表示擔憂，並指示他將種子短語輸入提供的網址。網址導致了一個看上去完全像Coinbase的網站，並具有相同的品牌，登錄格式和支持部分。但是，該網站還要求提供完整的訪問憑據。

Suman followed the directions, entering his seed phrase and providing the requested credentials. Nine days later, another caller went through a similar process with Suman, transferring his Bitcoin and Ether holdings. However, when Suman went to check his balance, his funds had vanished.

蘇曼遵循這些指示，進入他的種子短語並提供所請求的憑證。九天后，另一個呼叫者與蘇曼（Suman）進行了類似的過程，轉移了他的比特幣和以太股權。但是，當蘇曼去檢查自己的餘額時，他的資金消失了。

At the time, Suman was holding 17.5 Bitcoin and 225 Ether in a Trezor Model One hardware wallet. Bitcoin was trading at around $103,869 at the time, while Ether was valued at $2,507, putting the total value of Suman’s crypto savings at over $2 million.

當時，蘇曼（Suman）在Trezor Model One硬件錢包中拿著17.5比特幣和225 Ether。比特幣當時的交易價格約為103,869美元，而Ether的價值為2,507美元，這使Suman的加密貨幣儲蓄總價值超過200萬美元。

Coinbase’s Recent Data Breach Exposed Customer Info

Coinbase最近的數據洩露的客戶信息

Earlier this year, Coinbase disclosed a data breach that occurred in India. According to Coinbase, India-based contractors were bribed to provide access to customer data. The leaked information included customer names, account balances, and transaction history.

今年早些時候，Coinbase透露了在印度發生的數據洩露。根據Coinbase的說法，印度的承包商被賄賂以提供對客戶數據的訪問。洩漏的信息包括客戶名稱，帳戶餘額和交易歷史記錄。

Coinbase stated that about 1% of its monthly active users were affected by the breach. Among those affected is Sequoia Capital managing partner Roelof Botha, who declined to comment.

Coinbase指出，大約1％的每月活躍用戶受到違規影響。受影響的人包括紅杉資本管理合夥人羅爾·博塔（Roelof Botha），他拒絕發表評論。

Coinbase said the involved contractors have since been terminated. Philip Martin, Coinbase’s chief security officer, confirmed the breach and said the company expects remediation costs to be in the range of $180 million to $400 million.

Coinbase說，此後所涉及的承包商已被終止。 Coinbase的首席安全官Philip Martin確認了這一違規行為，並表示該公司預計補救成本在1.8億至4億美元之間。

The phishing site used in the scam to defraud Suman was an exact copy of Coinbase’s interface, complete with the same branding, login format, and support sections. It also asked Suman to input his seed phrase, which is the private key for his hardware wallet.

騙局中使用的網站借助Suman的網站是Coinbase界面的確切副本，並具有相同的品牌，登錄格式和支持部分。它還要求Suman輸入他的種子短語，這是他硬件錢包的私鑰。

Once Suman entered his seed phrase, the attackers gained full access to his hardware wallet. However, Suman didn’t receive any alerts from Coinbase about the large outflows of cryptocurrency. By the time Suman checked his balance, all of his funds had been transferred out and there were no pending transactions.

蘇曼（Suman）進入他的種子短語後，攻擊者可以完全進入他的硬件錢包。但是，Suman沒有從Coinbase收到有關加密貨幣大量流出的任何警報。到蘇曼（Suman）檢查了他的餘額時，他的所有資金已經轉移了出來，沒有等待的交易。

The scam is likely linked to the recent Coinbase data breach. The attackers used the leaked data from the breach to contact Suman with accurate details, including his name and account activity. They also used a combination of text messages and phone calls to escalate the situation and guide Suman through the scam.

該騙局可能與最近的共同數據洩露有關。攻擊者使用洩漏的數據與Suman聯繫，包括他的姓名和帳戶活動，以聯繫Suman。他們還結合了短信和電話來升級情況，並引導Suman通過騙局。

Coinbase has previously warned users that they will never ask for their seed phrases. However, the recent data breach provided attackers with enough information to impersonate official Coinbase support.

Coinbase此前曾警告用戶，他們永遠不會要求使用種子短語。但是，最近的數據洩露為攻擊者提供了足夠的信息，以模仿官方的共同支持。

Suman, who was unaware of the breach, followed what he thought was Coinbase’s instructions, leading to the loss of his entire crypto savings.

不知道違規行為的蘇曼（Suman）遵循了他認為是Coinbase的指示，導致了他整個加密貨幣的儲蓄。