Zachxbt报告Coinbase用户在一个复杂的骗局中损失了3490万美元

Zachxbt是一位著名的区块链调查员，最近在Telegram上发布，并报告说，Coinbase用户从其帐户中偷走了3490万美元

A Coinbase user had $34.9 million stolen from their account in a very sophisticated scam, reports ZachXBT.

Zachxbt报道说，一名Coinbase用户在一个非常复杂的骗局中从其帐户中被盗了3,490万美元。

The post on Telegram reports that this incident is part of a larger trend, with over $46 million being stolen from Coinbase users this month alone.

电报上的帖子报道说，这一事件是一个更大趋势的一部分，仅本月，Coinbase用户就被偷走了4600万美元。

How Was The Hack Executed?

黑客是如何执行的？

The stolen 400.099 BTC were first converted to Ethereum using Thorchain and Chainflip. This Ethereum was then converted into a stablecoin known as the DAI.

首先使用Thorchain和Chainflip将被盗的400.099 BTC转换为以太坊。然后将该以太坊转化为一种称为dai的稳定币。

Afterward, the stolen DAI were deposited into two addresses, one on Optimism and the other on Mantle.

之后，将被盗的Dai沉积到两个地址，一个是乐观的地址，另一个在地幔上。

However, to the surprise of many, there has not been a single concern raised by Coinbase, nor has the exchange flagged any of the addresses in their compliance tools.

但是，令许多人感到惊讶的是，Coinbase并没有提出任何关注，交易所也没有在其合规工具中标记任何地址。

This negligence from Coinbase is concerning and raises questions about how the exchange handles these kinds of scams and shows how important user protection is to the exchange.

Coinbase的这种疏忽是关于交换如何处理这类骗局的问题，并提出了疑问，并显示了用户保护对交易所的重要性。

Earlier this year, ZachXBT had reported that Coinbase users may be losing up to $300 million annually due to social engineering attacks.

今年早些时候，Zachxbt报道说，由于社会工程攻击，Coinbase用户每年可能会损失3亿美元。

According to ZachXBT’s recent analysis, he highlighted the fact that the total losses for user have been significantly underreported to law enforcement agencies or there is a possibility that these reports are not being captured by the internal systems of Coinbase.

根据Zachxbt最近的分析，他强调了一个事实，即用户的总损失已被大大低估了执法机构，或者可能没有由Coinbase的内部系统捕获这些报告。

Previous Hacks on Coinbase

以前的Coinbase上的黑客

In the past, there have been significant incidents of scams and hacks where Coinbase users have been involved.

过去，涉及Coinbase用户的骗局和骇客事件。

In 2021, around 6,000 customers lost funds due to attackers exploiting vulnerabilities in the SMS-based multi-factor authentication system.

2021年，由于攻击者在基于SMS的多因素身份验证系统中利用漏洞的攻击者，大约有6,000名客户损失了资金。

Moreover, there also has been a phishing attack which led to $37 million being stolen from the users who were tricked into providing their credentials on a fake Coinbase website. There also has been an impersonation scam that have targeted Coinbase users the most.

此外，还进行了一次网络钓鱼攻击，导致3,700万美元被诱骗在伪造的Coinbase网站上提供证书的用户被盗。还有一个模仿骗局，它最针对Coinbase用户。

Recently, a crypto scammer tricked a Coinbase user into transferring 326 BTC, valued at approximately $34.9 million at the time of the scam in May 2023. The scammer reportedly posed as a well-known crypto influencer to deceive the victim.

最近，一个加密骗子欺骗了一个Coinbase用户转移326 BTC，在2023年5月骗局时价值约3,490万美元。据报道，骗子被认为是著名的加密影响者欺骗受害者。

Earlier this month, another report from the investigator revealed that a crypto scammer tricked a Coinbase user into transferring 326 BTC, valued at approximately $34.9 million at the time of the scam in May 2023. The scammer reportedly used the identity of a prominent crypto influencer to deceive the victim.

本月初，调查人员的另一份报告显示，加密骗子欺骗了Coinbase用户转移326 BTC，在2023年5月的骗局时，骗子的价值约为3490万美元。据报道，骗子使用了杰出的加密影响者的身份来欺骗受害者。

According to the analysis by blockchain investigator ZachXBT, the stolen BTC were first converted to Ethereum using Thorchain and Chainflip. Afterward, the Ethereum was converted into a stablecoin known as DAI.

根据区块链研究者ZachXBT的分析，首先使用Thorchain和Chainflip将被盗的BTC转化为以太坊。之后，以太坊被转化为一种称为dai的稳定币。

The stolen DAI were deposited into two addresses, one on Optimism and the other on Mantle. However, to the surprise of many, Coinbase has yet to express any concerns or flag any of the addresses in their compliance tools.

被盗的dai被沉积在两个地址，一个是乐观的地址，另一个是在地幔上。但是，令许多人惊讶的是，Coinbase尚未表达任何担忧或标记其合规工具中的任何地址。

This lack of action from Coinbase is concerning and raises questions about how the exchange handles these kinds of scams and shows how important user protection is to the exchange.

Coinbase缺乏行动是关于交换如何处理这类骗局的问题，并提出了疑问，并显示了用户保护对交易所的重要性。

Earlier this year, ZachXBT had reported that Coinbase users may be losing up to $300 million annually due to social engineering attacks.

今年早些时候，Zachxbt报道说，由于社会工程攻击，Coinbase用户每年可能会损失3亿美元。

According to ZachXBT’s recent analysis, he highlighted the fact that the total losses for user have been significantly underreported to law enforcement agencies or there is a possibility that these reports are not being captured by the internal systems of Coinbase.

根据Zachxbt最近的分析，他强调了一个事实，即用户的总损失已被大大低估了执法机构，或者可能没有由Coinbase的内部系统捕获这些报告。

What Are The Internal Measures Being Taken By Coinbase?

Coinbase正在采取哪些内部措施？

In 2021, a significant number of Coinbase customers fell victim to a large-scale scam. Reports from the incident suggest that around 6,000 customers lost their cryptocurrency holdings due to attackers exploiting vulnerabilities in the SMS-based multi-factor authentication system used by the exchange.

在2021年，大量的Coinbase客户成为大规模骗局的受害者。该事件的报告表明，由于攻击者利用了交易所使用的基于SMS的多因素身份验证系统，大约有6,000名客户失去了加密货币持有量。

Later that year, another phishing attack targeted Coinbase users, resulting in the theft of an estimated $37 million. Users were tricked into providing their credentials on a fake Coinbase website, which allowed the attackers to gain access to their accounts.

那年晚些时候，另一场网络钓鱼攻击针对的是共插入式用户，导致盗窃估计3,700万美元。用户被诱骗在假装Coinbase网站上提供其凭据，这使攻击者可以访问其帐户。

Earlier this year, another scam targeted Coinbase users, with an imposter attempting to siphon funds from a user in a very large-scale crypto scam. An incompetent scammer nearly tricked a Coinbase user into transferring 326 BTC, valued at approximately $34.9 million at the time of the scam in May 2023.

今年早些时候，另一个骗局针对的是Coinbase用户，冒险家试图通过非常大规模的加密骗局从用户那里汲取资金。一个无能的骗子几乎欺骗了Coinbase用户转移326 BTC，在2023年5月的骗局时，价值约为3490万美元。

The post by blockchain investigator ZachXBT claims that the scammer attempted to impersonate a prominent crypto influencer in an effort to deceive the Coinbase user.

区块链调查员Zachxbt的帖子声称，骗子试图模仿一个著名的加密影响者，以欺骗Coinbase用户。

According to the analysis by the investigator, the stolen BTC were first converted to Ethereum using Thorchain and Chainflip. Afterward, the Ethereum was converted into a stablecoin known as DAI.

根据研究者的分析，首先使用Thorchain和Chainflip将被盗的BTC转化为以太坊。之后，以太坊被转化为一种称为dai的稳定币。

The stolen DAI were deposited into two addresses, one on Optimism and the latter on Mantle. However, to the surprise of many, Coinbase has yet to express any concerns or flag any of the addresses in their compliance tools.

被盗的dai被沉积在两个地址中，一个关于乐观情绪，后者在地幔上。但是，令许多人惊讶的是，Coinbase尚未表达任何担忧或标记其合规工具中的任何地址。

This lack of action from Coinbase is concerning and raises questions about how the exchange handles these

Coinbase缺乏行动令人担忧，并提出了有关如何处理这些交换的问题