Coinbase Users Hit with $65 Million Loss in Social Engineering Scams, ZachXBT Reports

• Coinbase users lost $65M+ to scammers who used fake websites and emails to steal crypto funds between Dec 2024 and Jan 2025.
• ZachXBT urged Coinbase to improve security and restrict new account withdrawals after finding yearly scam losses exceed $300M.

Cryptocurrency exchange Coinbase faces mounting criticism as blockchain investigator ZachXBT revealed users lost more than $65 million to social engineering scams between December 2024 and January 2025. The reported losses likely represent only a fraction of the actual damage, as the figure excludes cases reported directly to Coinbase support and law enforcement.

The investigation uncovered sophisticated schemes where fraudsters leveraged stolen personal information from private databases to execute their attacks. In one notable case, scammers convinced a victim of supposed unauthorized login attempts before sending fabricated Coinbase emails containing fake case identification numbers. These communications directed users to transfer funds to a Coinbase Wallet and authorize specific addresses.

The scammers’ methodology involved creating nearly identical clones of the Coinbase website, enabling them to send customized prompts through spoofed emails using specialized panels. According to ZachXBT’s findings, these fraudulent tools are openly advertised across various Telegram channels.

Security Measures Under Scrutiny

The blockchain investigator estimates annual losses from social engineering attacks exceed $300 million, highlighting significant vulnerabilities in Coinbase’s security infrastructure. ZachXBT noted that competing cryptocurrency exchanges had not experienced similar levels of organized fraud through specialized scammer panels.

A particular point of contention emerged when a Coinbase employee advised users against VPN usage to avoid suspicious activity flags. ZachXBT criticized this approach, pointing out that cybercriminals deliberately block VPN access to their phishing sites, suggesting a fundamental misunderstanding of effective security measures by the exchange.

The investigation also revealed that many fraudulent addresses remain unreported by Coinbase, even after weeks of documented theft activities. This apparent lack of action has drawn sharp criticism from security experts and affected users alike.

Recommendations for Enhanced Security Protocol

ZachXBT proposed several security improvements for the cryptocurrency exchange to combat these growing threats. These recommendations include making phone number requirements optional for KYC-verified users, introducing restricted withdrawal limits for new accounts, and expanding community education initiatives.

After large-scale attacks, urgent security protocol changes for Coinbase become necessary. Industry professionals indicate that future growth in the cryptocurrency sector depends strongly on exchange security systems that safeguard user funds effectively.

Growth in the popularity of digital assets encourages the development of more advanced social engineering attack methods. Security experts maintain that cryptocurrency trading protection should focus on all-around security by combining technical defense systems with risk oversight for human vulnerabilities.

The analysis confirms that cryptocurrency exchanges need to change their security systems to combat newly emerging threats. Renewed attacks through social engineering present an imminent threat to cryptocurrency exchange systems, which would decrease user faith in centralized cryptocurrency trading platforms.

User accessibility stands against security requirements in the cryptocurrency industry, as the recent exchange attack has demonstrated. Exchange users expect cryptocurrency platforms to enhance their protection strategies because fraudsters constantly develop improving deception strategies.