• Markets
  • Crypto
  • Web3
  • Culture
  • Opinion
  • Politics
Subscribe
  • Login
  • Register
No Result
View All Result
  • Markets
  • Crypto
  • Web3
  • Culture
  • Opinion
  • Politics
No Result
View All Result
No Result
View All Result

Coinbase Foils Hack with Firefox 0-Day

09/08/2019 14:52
1 comment
Firefox o-day exploit attempt at Coinbase, August 2019

A billions of dollars hack has been averted by a fizzle with Coinbase managing to stop on its track the well planned and sophisticated operation.

Over weeks starting in May a group of hackers dubbed CRYPTO3/HYDSEVEN sent a harmless email to initially some 200 Coinbase employees.

The emails were sent from compromised accounts belonging to UK’s Cambridge University.

“The identities associated with the email accounts have almost no online presence,” Coinbase says. So Cambridge University itself might have been hacked.

There, “they prepared a series of pages by cloning and modifying existing Cambridge University pages and making them available in the personal storage directories of the attacker-controlled accounts.”

With the facade prepared, someone named Gregory Harris claimed he was a research grants administrator and wanted the Coinbase employees to help judge contestants for an economics prize.

After gaining some trust to make it all credible, the hackers figured out the more valuable targets through social engineering, sharing harmless links to the contest page in preparation for getting them to click on the exploit payload.

That was sent to only five Coinbase employees with two Firefox zero-day exploits utilized, described as:

“One that allowed an attacker to escalate privileges from JavaScript on a page to the browser (CVE-2019–11707) and one that allowed the attacker to escape the browser sandbox and execute code on the host computer (CVE-2019–11708).”

The second one “has only been possible since May 12. This indicates a very rapid discovery-to-weaponization cycle on the part of the attacker,” Coinbase says.

It might also indicate very quick planing as perhaps through this method they hacked Cambridge University first, with this group of hackers seemingly moving pretty quickly.

Coinbase says “it feels like the work of a group that has significant experience developing exploits,” with one employee ending up clicking. At that point they “revoked all credentials that were on the machine, and locked all the accounts belonging to the affected employee.”

They also say “Coinbase Security Operations received a number of alerts about unusual endpoint activity,” with the crypto exchange and broker necessarily not giving much detail on how they stopped this hack save for to say:

“We were able to defend ourselves from this attack due to our security-first culture at Coinbase, complete deployment of our detection and response tooling, clear and well-practiced playbooks, and the ability to rapidly revoke access.”

Why they thought it fit to make this public is not clear because as a very prominent exchange, plenty assumed they were being targeted.

The question was always whether anyone will succeed. They haven’t so far and hopefully never will.

Copyrights Trustnodes.com

Related Posts

Trustnodes Web3 Login, May 2022

Trustnodes Goes Web3

Bitcoin miner, abstract art.

Has Bitcoin Bottomed?

Cloudflare to Stake ETH

44 Central Banks to Attend Bitcoin Gathering in El Salvador

Load More
  • Trending
  • Comments
  • Latest
One of Luna's bitcoin wallet, May 2022

Luna Confirms They Sold All Bitcoin

Central Bankers Discuss Bitcoin in El Salvador, May 2022

44 Central Banks to Attend Bitcoin Gathering in El Salvador

Luna delisted, May 2022

Luna Delisted After Half a Trillion Trading Volumes

Three Months US Treasury Bonds Rate, May 2022

Falling Bonds Back USDc

Trustnodes Web3 Login, May 2022

Trustnodes Goes Web3

Bitcoin miner, abstract art.

Has Bitcoin Bottomed?

Cloudflare HQ

Cloudflare to Stake ETH

Central Bankers Discuss Bitcoin in El Salvador, May 2022

44 Central Banks to Attend Bitcoin Gathering in El Salvador

Comments

Latest News

  • Trustnodes Goes Web3
  • Has Bitcoin Bottomed?
  • Cloudflare to Stake ETH

About Trustnodes

Terms of Service

Privacy Policy

Our Ethics and Values

Trustnodes Newsletter

Trustnodes © 2017-2022. All Rights Fully Reserved. For any Enquiries contact@trustnodes.com RSS Feed

No Result
View All Result
  • Login
  • Sign Up
  • Cart
  • Markets
  • Crypto
  • Web3
  • Culture
  • Opinion
  • Politics

Trustnodes © 2017-2022. All Rights Fully Reserved. For any Enquiries contact@trustnodes.com RSS Feed

Welcome Back!

Login to your account below

Authenticate with MetaMask Loading...

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

*By registering into our website, you agree to the Terms & Conditions and Privacy Policy.
All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In
This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy and Cookie Policy.
Are you sure want to unlock this post?
Unlock left : 0
Are you sure want to cancel subscription?