the coinbase compromise was way worse than they made it seem
apparently offsite customer service reps had full database access to transaction history, including bitcoin addresses, home addresses, phone numbers, emails, and bank info
Login to reply
Replies (114)
Good old KYC (Kill Your Customer)
This reminds me I need to buy some more ammo.
View quoted note →
KYC for the Big L
kyc laws are evil but blaming this on those is giving coinbase too much credit
customer service should not have access to all this info
When hackers review my Coinbase account details they'll say "naah not worth waste time on this one 😂"
None of the kyc exchanges I've used in the past have my current address, but strike does. So this has me wondering what strikes security looks like and if they're advocating for additional security for their users?
KYC is the illicit activity
we have strict access controls on sensitive user info and all customer service reps are well paid, vetted, and hired internally
Good Opsec premium just skyrocketted! Your KYC list is only as secure as the salary of those who have access to the database
Beat me to it 🤣
Any recommend purchasing platforms for NKYC lightning sats ?
I don't doubt that. Moreso it'd be cool for them to push some educational materials to customers that'd help in the event of this type of breach. No one is "unhackable" but I'm guessing the answer is just offsite multisig.
Safety in such empty.
#KYC is one, if not THEbiggestt, security risks...
will consider, it is difficult because there is no “one size fits all” advice
highly recommend multisig for large holders, anchorwatch is a solid option for less technical users, they hold your hand through the process and insurance covers theft
onchain privacy is an important piece as well
and home security in general, cameras, guns, etc - don’t be a soft target
robosats, hodlhodl, peach, bisq
or the old fashioned way, meetups
KYC 👎
View quoted note →
I have an pre KYC Coinbase account and Coinbase wants me to KYC to delete the account. They can keep my burner email and Wtv Bcash is left on there.
Fuck sake. They can't be trusted with the data. None of them.
the coinbase compromise was way worse than they made it seem
apparently offsite customer service reps had full database access to transaction history, including bitcoin addresses, home addresses, phone numbers, emails, and bank info
View quoted note →
If only someone in their support department had warned them this was stupid and risky when they were first set this up years ago, maybe they would have listened…
Oh yeah, it’s Coinbase. They care as much for their support reps as they do their customers, so that’s a big fat nope.
Conbase is gonna have some massive legal problems coming
View quoted note →
did you used to work for coinbase support?
Might be a good time to either get a proper gun or 3D print one for those affected
300 pizzas on the way to Mr M. Saylor…
Another win for those renting. I signed up with Coinbase five addresses ago.
Coinbase negligence is putting people in physical danger.
the coinbase compromise was way worse than they made it seem
apparently offsite customer service reps had full database access to transaction history, including bitcoin addresses, home addresses, phone numbers, emails, and bank info
View quoted note →
What made you choose Strike over River? Just curious, I have no hard position against Strike.
Sure revisit your opsec, how about moving to a city where you can justifiably defend yourself and bear arms.
Much less trying and more finding out. 🔫
Odell could've posted this to X and played the game of centralised algorithms, probably would've got a bigger audience but has made a conscious choice to be the change he wants to see in the world.
the coinbase compromise was way worse than they made it seem
apparently offsite customer service reps had full database access to transaction history, including bitcoin addresses, home addresses, phone numbers, emails, and bank info
View quoted note →
But why were they on Coinbase :-) .. wasn't they the "self custody" supremo ? May be I am wrong ..
Lesson - don't listen to the GURUs 😭😭😭 .. oh may be it is a free promo .
By the time this all shakes out, buying from a stranger in a parking lot may prove safer than buying from Coinbase 🤦♀️
the coinbase compromise was way worse than they made it seem
apparently offsite customer service reps had full database access to transaction history, including bitcoin addresses, home addresses, phone numbers, emails, and bank info
View quoted note →
My family rents mainly because we feel morally conflicted in increasing M2 money supply to purchase a home, and I’m not selling 🌽 to buy a house. But beyond that, companies make you put in your address for everything nowadays, and things are shipped to you all the time.
Until personal data is taken seriously and secured uncompromisingly, staying on the move through renting is just another layer of opsec.
View quoted note →
Holly molly .. it is a promo .. COIN up five percent this morning ..
and proper training, incredibly important
KYC is the illicit activity
the coinbase compromise was way worse than they made it seem
apparently offsite customer service reps had full database access to transaction history, including bitcoin addresses, home addresses, phone numbers, emails, and bank info
View quoted note →
I’m glad I have moved multiple times since I last used Coinbase and Ledger years ago
100%
Hahaha
an under appreciated benefit of renting
For God's sake, why does Brian (naked mole rat) Armstrong even have a job still?
I deleted my account last year 🙏
Big oof!
Indeed
No-KYC bitcoin ATMs in the 51st State.
Horrendous. Fuck centralization!
These were the types of posts that onboarded me to X @Dan Wedge
#odellonboardedmetox
Odell keeps posting X screenshots. I guess I should start an X account for the alpha.
if interesting shit happens off nostr, people should cross post it here
strictly different than feeding the beast by posting there
Most local police hold classes in the US
KYC is the problem! That's my note
They weren't compromised. They just called it that way 🙄
It is a breach of Least Privilege, which is a fundamental cybersecurity principle. An egregious error on Coinbase's part. Anyone with even just a Sec+ (i.e., me) knows this.
He recently mentioned on a pod working for Coinbase, but I forget if he said the department, but probably support 😂
i intentionally did not say hack, employees compromised their system
They could easily leak the information on purpose and then deflect blame by claiming it was a hack.
Yes it was. Fucking terrible.
DANG
ENJOY THE NOISE
Not hack. How about... It was intentional
Wow 🤢🤮🤷♂️ fuck the exchange
KYCing should be illegal
Ouch! 🙄😱
YIKES !
The good ones seem to get to nostr
Make #DeleteCoinbase great again.
🤖
What is Coinbase?
We need a LocalBitcoins built on nostr
I’ve been getting spam texts that are fake as fuck from “Coinbase” Have used coinbase in years.
Yeah, I was management. We warned them of this happening when the executive team decided that we should have call centers.
just thinking the exact same thing.
Need to stay non-sovereign like your money
Ouch… Hate this kind of thing. Be careful out there people
The brutal truth is that all that data can be used to do a multiple of things. I think I was a dumb idea for coin base not to pay the hackers.
But such data is detrimental to customers if it hits dark web 🕸️
I started getting fake text messages and calls from “coinbase support” today saying someone logged into my account from Paris. I haven’t used coinbase since like 2019.
same thing started happening to me today.
Paying them won’t make them delete the information.
lol
To be fair you could say “Joe Rodgers of _______ is reporting that ______ “ and not share a direct X pic.
Privacy matters!
View quoted note →
🙂⚡🙂 there is a code - and they wouldn't go against it if they got paid. But they gonna just dump it on the dark web for others to rip and I am sorry 😞 for all those coin base customers - drivers license 🪪 ssn - enough information for someone to literally take over your identity 🆔.
i thought most wouldn't have a big stack on an exchange anyways
How do we know they had such access?
I HAVE NO HARD POSITION AGAINST RIVER - I JUST DIDN’T LIKE SOMETHING THAT LIESHMAN SAID ON THIS PODCAST HE WAS ON A YEAR OR TWO BACK. AT THAT TIME I HAD USED BOTH AND JUST MOVED TO ONLY USE STRIKE GOING FORWARD.
I THINK IT WAS ONE HE DID WITH PRESTON AS I RECALL - OTHER THAN THAT I ALSO JUST VIBE WITH MICH OF WHAT MALLERS IS DOING - THOUGH IM NOT A SUPER FAN OF THE TETHER TOMFOOLERY BUT I UNDERSTAND WHY HE IS DOING IT
I THINK IT DOESNT HELP BITCOIN AS MUCH AS IT HELPS PROFITS - WHICH JUST FEELS A BIT DIRTY TO ME UNLESS YOU DO MORE THAN JUST OBTAIN MORE BITCOIN FOR YOURSELF - THERE ARE WAY, WAY, WAY TOO MANY PEOPLE NEEDING TO BE ONBOARDED TO THE NETWORK FIRST
I got one a few weeks ago saying it was logged into from Tokyo even though I deleted my account ages ago.
fuck kyc
I don't mind it if it's with a trusted company like Strike. But, I would never leave more than $100 on ANY exchange. That's for sure.
Isn't it always worse than it's made to seem? Lol
KYC needs to end.
It doesn't need to be there for people to know it exists. Buying it there is enough.
Every company is trusted until it isn't. Strike isn't immune to scew ups or attacks, which is why we shouldn't have to trust any company with unnecessary data.
You should mind.
Yeah, I really trust the code of thieves.
Doesn't really help you since they have to save all that data for years.
Why when he can just post a screenshot?
It isn't all that hard to find an address in some places. Especially the US. I've found people I hadn't seen or spoken to in years.
I'm aware. That's why I said i barely keep any money on an exchange. To be clear, I don't use Strike for purchases. I use Robosats for that. I just use strike to pay bills with whatever cash balance is needed.
Fair enough. Robosats is something I found recently. Interesting concept.
A lot of people are intimidated by the purchasing process. It's much easier than it seems, though.
Isn’t freedom great
i see, no wonder coinbase is giving 2% to all deposits starting today to their xoinbase one members.
😞
What can someone do? New phone number?
This is why #privacy matters.
KYC is dangerous.
View quoted note →
Slowly every Bitcoiner will realize that KYC data and a transparent, public blockchain is a terrible combination for a store of value.
View quoted note →
KYC data + withdrawal addresses on a public, transparent blockchain - what could possibly go wrong?
It is possible that those are phishing emails and SMS messages from bad actors; not really from Coinbase.
yes that is exactly what’s happening
Yes👍🏻
Magically whenever there is data breach it’s always less than 1% of customers affected
Fuck Coinbase
View quoted note →
I was so us as well be roll up else we’re all go mouse wella blabs else moss wells or able to go then wells wry assume we’re moss Llaa
Alaa
Alas some moss zone. Pass lass some moss Loas some
So
Wow, that's good tho. Lol
#DontRiskItBisq
#KYCNotMe
#Robosats
#Retoswap
the coinbase compromise was way worse than they made it seem
apparently offsite customer service reps had full database access to transaction history, including bitcoin addresses, home addresses, phone numbers, emails, and bank info
View quoted note →