Zachxbt報告Coinbase用戶在一個複雜的騙局中損失了3490萬美元

Zachxbt是一位著名的區塊鏈調查員，最近在Telegram上發布，並報告說，Coinbase用戶從其帳戶中偷走了3490萬美元

A Coinbase user had $34.9 million stolen from their account in a very sophisticated scam, reports ZachXBT.

Zachxbt報導說，一名Coinbase用戶在一個非常複雜的騙局中從其帳戶中被盜了3,490萬美元。

The post on Telegram reports that this incident is part of a larger trend, with over $46 million being stolen from Coinbase users this month alone.

電報上的帖子報導說，這一事件是一個更大趨勢的一部分，僅本月，Coinbase用戶就被偷走了4600萬美元。

How Was The Hack Executed?

黑客是如何執行的？

The stolen 400.099 BTC were first converted to Ethereum using Thorchain and Chainflip. This Ethereum was then converted into a stablecoin known as the DAI.

首先使用Thorchain和Chainflip將被盜的400.099 BTC轉換為以太坊。然後將該以太坊轉化為一種稱為dai的穩定幣。

Afterward, the stolen DAI were deposited into two addresses, one on Optimism and the other on Mantle.

之後，將被盜的Dai沉積到兩個地址，一個是樂觀的地址，另一個在地幔上。

However, to the surprise of many, there has not been a single concern raised by Coinbase, nor has the exchange flagged any of the addresses in their compliance tools.

但是，令許多人感到驚訝的是，Coinbase並沒有提出任何關注，交易所也沒有在其合規工具中標記任何地址。

This negligence from Coinbase is concerning and raises questions about how the exchange handles these kinds of scams and shows how important user protection is to the exchange.

Coinbase的這種疏忽是關於交換如何處理這類騙局的問題，並提出了疑問，並顯示了用戶保護對交易所的重要性。

Earlier this year, ZachXBT had reported that Coinbase users may be losing up to $300 million annually due to social engineering attacks.

今年早些時候，Zachxbt報導說，由於社會工程攻擊，Coinbase用戶每年可能會損失3億美元。

According to ZachXBT’s recent analysis, he highlighted the fact that the total losses for user have been significantly underreported to law enforcement agencies or there is a possibility that these reports are not being captured by the internal systems of Coinbase.

根據Zachxbt最近的分析，他強調了一個事實，即用戶的總損失已被大大低估了執法機構，或者可能沒有由Coinbase的內部系統捕獲這些報告。

Previous Hacks on Coinbase

以前的Coinbase上的黑客

In the past, there have been significant incidents of scams and hacks where Coinbase users have been involved.

過去，涉及Coinbase用戶的騙局和駭客事件。

In 2021, around 6,000 customers lost funds due to attackers exploiting vulnerabilities in the SMS-based multi-factor authentication system.

2021年，由於攻擊者在基於SMS的多因素身份驗證系統中利用漏洞的攻擊者，大約有6,000名客戶損失了資金。

Moreover, there also has been a phishing attack which led to $37 million being stolen from the users who were tricked into providing their credentials on a fake Coinbase website. There also has been an impersonation scam that have targeted Coinbase users the most.

此外，還進行了一次網絡釣魚攻擊，導致3,700萬美元被誘騙在偽造的Coinbase網站上提供證書的用戶被盜。還有一個模仿騙局，它最針對Coinbase用戶。

Recently, a crypto scammer tricked a Coinbase user into transferring 326 BTC, valued at approximately $34.9 million at the time of the scam in May 2023. The scammer reportedly posed as a well-known crypto influencer to deceive the victim.

最近，一個加密騙子欺騙了一個Coinbase用戶轉移326 BTC，在2023年5月騙局時價值約3,490萬美元。據報導，騙子被認為是著名的加密影響者欺騙受害者。

Earlier this month, another report from the investigator revealed that a crypto scammer tricked a Coinbase user into transferring 326 BTC, valued at approximately $34.9 million at the time of the scam in May 2023. The scammer reportedly used the identity of a prominent crypto influencer to deceive the victim.

本月初，調查人員的另一份報告顯示，加密騙子欺騙了Coinbase用戶轉移326 BTC，在2023年5月的騙局時，騙子的價值約為3490萬美元。據報導，騙子使用了傑出的加密影響者的身份來欺騙受害者。

According to the analysis by blockchain investigator ZachXBT, the stolen BTC were first converted to Ethereum using Thorchain and Chainflip. Afterward, the Ethereum was converted into a stablecoin known as DAI.

根據區塊鏈研究者ZachXBT的分析，首先使用Thorchain和Chainflip將被盜的BTC轉化為以太坊。之後，以太坊被轉化為一種稱為dai的穩定幣。

The stolen DAI were deposited into two addresses, one on Optimism and the other on Mantle. However, to the surprise of many, Coinbase has yet to express any concerns or flag any of the addresses in their compliance tools.

被盜的dai被沉積在兩個地址，一個是樂觀的地址，另一個是在地幔上。但是，令許多人驚訝的是，Coinbase尚未表達任何擔憂或標記其合規工具中的任何地址。

This lack of action from Coinbase is concerning and raises questions about how the exchange handles these kinds of scams and shows how important user protection is to the exchange.

Coinbase缺乏行動是關於交換如何處理這類騙局的問題，並提出了疑問，並顯示了用戶保護對交易所的重要性。

Earlier this year, ZachXBT had reported that Coinbase users may be losing up to $300 million annually due to social engineering attacks.

今年早些時候，Zachxbt報導說，由於社會工程攻擊，Coinbase用戶每年可能會損失3億美元。

According to ZachXBT’s recent analysis, he highlighted the fact that the total losses for user have been significantly underreported to law enforcement agencies or there is a possibility that these reports are not being captured by the internal systems of Coinbase.

根據Zachxbt最近的分析，他強調了一個事實，即用戶的總損失已被大大低估了執法機構，或者可能沒有由Coinbase的內部系統捕獲這些報告。

What Are The Internal Measures Being Taken By Coinbase?

Coinbase正在採取哪些內部措施？

In 2021, a significant number of Coinbase customers fell victim to a large-scale scam. Reports from the incident suggest that around 6,000 customers lost their cryptocurrency holdings due to attackers exploiting vulnerabilities in the SMS-based multi-factor authentication system used by the exchange.

在2021年，大量的Coinbase客戶成為大規模騙局的受害者。該事件的報告表明，由於攻擊者利用了交易所使用的基於SMS的多因素身份驗證系統，大約有6,000名客戶失去了加密貨幣持有量。

Later that year, another phishing attack targeted Coinbase users, resulting in the theft of an estimated $37 million. Users were tricked into providing their credentials on a fake Coinbase website, which allowed the attackers to gain access to their accounts.

那年晚些時候，另一場網絡釣魚攻擊針對的是共插入式用戶，導致盜竊估計3,700萬美元。用戶被誘騙在假裝Coinbase網站上提供其憑據，這使攻擊者可以訪問其帳戶。

Earlier this year, another scam targeted Coinbase users, with an imposter attempting to siphon funds from a user in a very large-scale crypto scam. An incompetent scammer nearly tricked a Coinbase user into transferring 326 BTC, valued at approximately $34.9 million at the time of the scam in May 2023.

今年早些時候，另一個騙局針對的是Coinbase用戶，冒險家試圖通過非常大規模的加密騙局從用戶那裡汲取資金。一個無能的騙子幾乎欺騙了Coinbase用戶轉移326 BTC，在2023年5月的騙局時，價值約為3490萬美元。

The post by blockchain investigator ZachXBT claims that the scammer attempted to impersonate a prominent crypto influencer in an effort to deceive the Coinbase user.

區塊鏈調查員Zachxbt的帖子聲稱，騙子試圖模仿一個著名的加密影響者，以欺騙Coinbase用戶。

According to the analysis by the investigator, the stolen BTC were first converted to Ethereum using Thorchain and Chainflip. Afterward, the Ethereum was converted into a stablecoin known as DAI.

根據研究者的分析，首先使用Thorchain和Chainflip將被盜的BTC轉化為以太坊。之後，以太坊被轉化為一種稱為dai的穩定幣。

The stolen DAI were deposited into two addresses, one on Optimism and the latter on Mantle. However, to the surprise of many, Coinbase has yet to express any concerns or flag any of the addresses in their compliance tools.

被盜的dai被沉積在兩個地址中，一個關於樂觀情緒，後者在地幔上。但是，令許多人驚訝的是，Coinbase尚未表達任何擔憂或標記其合規工具中的任何地址。

This lack of action from Coinbase is concerning and raises questions about how the exchange handles these

Coinbase缺乏行動令人擔憂，並提出了有關如何處理這些交換的問題