Ed Suman, a 67-year-old retired artist, misplaced $2 million in crypto after falling for a Coinbase impersonator rip-off. In March 2025, he obtained a textual content warning about suspicious exercise on his Coinbase account. A person calling himself Brett Miller then phoned, claiming to be from Coinbase safety.
The caller mentioned Suman’s pockets is perhaps in danger. He instructed him to enter his seed phrase right into a web site resembling Coinbase. The positioning requested for full entry credentials. Suman adopted the instructions. 9 days later, one other caller repeated the method. After that, his Bitcoin and Ether holdings have been gone.
Suman had saved 17.5 Bitcoin and 225 Ether in a Trezor Mannequin One {hardware} pockets. On the time, Bitcoin traded close to $103,869 and Ether at $2,507. The whole worth of his holdings exceeded $2 million.
Coinbase Information Breach Uncovered Buyer Information
Coinbase confirmed a safety breach in Might 2025. Attackers bribed India-based contractors to entry buyer knowledge. Leaked info included names, balances, and transaction historical past. Coinbase mentioned round 1% of energetic month-to-month customers have been affected.
Amongst them was Sequoia Capital’s managing companion, Roelof Botha. He declined to remark. Coinbase acknowledged that the concerned contractors have been fired. Philip Martin, Chief Safety Officer, confirmed the breach. The corporate expects remediation prices between $180 million and $400 million.
Pretend Coinbase Web site Collected Seed Phrase
The phishing web site used within the rip-off seemed similar to Coinbase’s interface. It copied branding, login format, and assist sections. The positioning requested Suman to enter his seed phrase — the non-public key for his {hardware} pockets.
As soon as entered, the attackers gained full management. Suman didn’t obtain any alerts. The transfers occurred quietly. By the point he checked his stability, all funds had been moved. There have been no restoration updates.
The attackers seemingly used leaked knowledge from the Coinbase knowledge breach. They contacted Suman by cellphone and SMS, utilizing correct account particulars. They escalated the state of affairs with follow-up calls and guided steps.
Coinbase clarified it by no means asks for seed phrases. The breach offered attackers sufficient info to impersonate official assist. Suman, unaware of the breach, adopted directions. His complete crypto financial savings disappeared.