退休的艺术家在加密货币中损失了200万美元的coinbase模仿骗局

现年67岁的退休艺术家埃德·苏曼（Ed Suman）在跌倒了一个共同的模仿者骗局后损失了200万美元的加密货币。

Ed Suman, a 67-year-old retired artist, fell victim to a crypto scam that began with a text message from Coinbase and ultimately saw him lose an estimated $2 million in Bitcoin and Ether.

现年67岁的退休艺术家埃德·苏曼（Ed Suman）成为加密骗子骗局的受害者，该骗局始于Coinbase的短信，最终看到他损失了估计的200万美元的比特币和Ether。

The scam unfolded in March 2025, when Suman received a text message from what appeared to be Coinbase, warning him of suspicious activity on his account. Shortly after, a man named Brett Miller phoned Suman, introducing himself as a member of Coinbase security.

骗局于2025年3月展开，当时苏曼收到了看来是共同案件的短信，警告他对他的帐户有可疑的活动。此后不久，一个叫布雷特·米勒（Brett Miller）的人打电话给苏曼（Suman），将自己介绍为Coinbase Security的成员。

The caller expressed concern over Suman’s wallet being compromised and instructed him to enter his seed phrase into a web address provided. The web address led to a site that looked exactly like Coinbase, complete with the same branding, login format, and support sections. However, the site also asked for full access credentials.

呼叫者对苏曼的钱包受到妥协表示担忧，并指示他将种子短语输入提供的网址。网址导致了一个看上去完全像Coinbase的网站，并具有相同的品牌，登录格式和支持部分。但是，该网站还要求提供完整的访问凭据。

Suman followed the directions, entering his seed phrase and providing the requested credentials. Nine days later, another caller went through a similar process with Suman, transferring his Bitcoin and Ether holdings. However, when Suman went to check his balance, his funds had vanished.

苏曼遵循这些指示，进入他的种子短语并提供所请求的凭证。九天后，另一个呼叫者与苏曼（Suman）进行了类似的过程，转移了他的比特币和以太股权。但是，当苏曼去检查自己的余额时，他的资金消失了。

At the time, Suman was holding 17.5 Bitcoin and 225 Ether in a Trezor Model One hardware wallet. Bitcoin was trading at around $103,869 at the time, while Ether was valued at $2,507, putting the total value of Suman’s crypto savings at over $2 million.

当时，苏曼（Suman）在Trezor Model One硬件钱包中拿着17.5比特币和225 Ether。比特币当时的交易价格约为103,869美元，而Ether的价值为2,507美元，这使Suman的加密货币储蓄总价值超过200万美元。

Coinbase’s Recent Data Breach Exposed Customer Info

Coinbase最近的数据泄露的客户信息

Earlier this year, Coinbase disclosed a data breach that occurred in India. According to Coinbase, India-based contractors were bribed to provide access to customer data. The leaked information included customer names, account balances, and transaction history.

今年早些时候，Coinbase透露了在印度发生的数据泄露。根据Coinbase的说法，印度的承包商被贿赂以提供对客户数据的访问。泄漏的信息包括客户名称，帐户余额和交易历史记录。

Coinbase stated that about 1% of its monthly active users were affected by the breach. Among those affected is Sequoia Capital managing partner Roelof Botha, who declined to comment.

Coinbase指出，大约1％的每月活跃用户受到违规影响。受影响的人包括红杉资本管理合伙人罗尔·博塔（Roelof Botha），他拒绝发表评论。

Coinbase said the involved contractors have since been terminated. Philip Martin, Coinbase’s chief security officer, confirmed the breach and said the company expects remediation costs to be in the range of $180 million to $400 million.

Coinbase说，此后所涉及的承包商已被终止。 Coinbase的首席安全官Philip Martin确认了这一违规行为，并表示该公司预计补救成本在1.8亿至4亿美元之间。

The phishing site used in the scam to defraud Suman was an exact copy of Coinbase’s interface, complete with the same branding, login format, and support sections. It also asked Suman to input his seed phrase, which is the private key for his hardware wallet.

骗局中使用的网站借助Suman的网站是Coinbase界面的确切副本，并具有相同的品牌，登录格式和支持部分。它还要求Suman输入他的种子短语，这是他硬件钱包的私钥。

Once Suman entered his seed phrase, the attackers gained full access to his hardware wallet. However, Suman didn’t receive any alerts from Coinbase about the large outflows of cryptocurrency. By the time Suman checked his balance, all of his funds had been transferred out and there were no pending transactions.

苏曼（Suman）进入他的种子短语后，攻击者可以完全进入他的硬件钱包。但是，Suman没有从Coinbase收到有关加密货币大量流出的任何警报。到苏曼（Suman）检查了他的余额时，他的所有资金已经转移了出来，没有等待的交易。

The scam is likely linked to the recent Coinbase data breach. The attackers used the leaked data from the breach to contact Suman with accurate details, including his name and account activity. They also used a combination of text messages and phone calls to escalate the situation and guide Suman through the scam.

该骗局可能与最近的共同数据泄露有关。攻击者使用泄漏的数据与Suman联系，包括他的姓名和帐户活动，以联系Suman。他们还结合了短信和电话来升级情况，并引导Suman通过骗局。

Coinbase has previously warned users that they will never ask for their seed phrases. However, the recent data breach provided attackers with enough information to impersonate official Coinbase support.

Coinbase此前曾警告用户，他们永远不会要求使用种子短语。但是，最近的数据泄露为攻击者提供了足够的信息，以模仿官方的共同支持。

Suman, who was unaware of the breach, followed what he thought was Coinbase’s instructions, leading to the loss of his entire crypto savings.

不知道违规行为的苏曼（Suman）遵循了他认为是Coinbase的指示，导致了他整个加密货币的储蓄。