Coinbase Users Suffered $46 Million Loss from Phishing Scams in March 2025

In March 2025, Coinbase users experienced significant financial losses, with over $46 million reportedly stolen in a series of sophisticated phishing attacks.

March brought significant financial losses for Coinbase users, with over $46 million stolen in a series of sophisticated phishing attacks, according to a report by blockchain investigator ZachXBT.

The past year has seen a surge in cryptocurrency prices and cybercrime, with hackers exploiting weaknesses in security systems to deceive unsuspecting victims.

Among the simplest yet most effective methods used by cybercriminals is phishing, where they impersonate trusted entities to steal sensitive information. In March alone, these phishing attacks resulted in the theft of 400 Bitcoin (BTC), valued at approximately $34.9 million, from a single Coinbase wallet, as reported by the investigator.

The report indicates that multiple similar incidents occurred, with an estimation of $46 million lost by Coinbase users this month.

However, Jaclyn Sales, Coinbase’s Director of Communications, confirmed that the company is actively investigating the situation.

“We can confirm that we are aware of the situation and are actively investigating,” Sales stated.

She went on to reiterate Coinbase’s policy, emphasizing that the company would never contact users to request login credentials, API keys, or fund transfers.

“Any communication asking for this kind of information is a scam and should be ignored,” she added.

The report highlights that Coinbase is one of the most impersonated brands in the crypto space, with scammers leveraging trusted names to deceive users.

A June report by the Federal Trade Commission (FTC) noted that Meta was targeted more than 25 times the amount of Coinbase in phishing attempts, although the exchange remains a frequent target for these scams.

To help mitigate the risk of falling victim to these types of scams, Coinbase recommends a few key security measures.

Firstly, it’s recommended to use a dedicated email address exclusively for cryptocurrency transactions. This helps ensure that your crypto-related communications are separated from other emails, reducing the risk of phishing.

Next, enable two-factor authentication (2FA) on all your accounts. This adds an additional layer of protection by requiring a second form of identification (like a code sent to your phone) before granting access.

Additionally, setting up an address allowlist can greatly improve security. By doing this, you ensure that withdrawals can only be made to approved addresses, minimizing the chances of any unauthorized transactions.

Lastly, consider storing your assets in Coinbase Vault. This feature offers an extra level of security by requiring multiple approvals for withdrawals, making it even harder for unauthorized users to access your funds.

These steps can help safeguard your crypto holdings and provide more peace of mind while managing your assets.