/biz/ - Business & Finance

>>26026516
Impossible for Coinbase to verify if this is a scam on your end or not.

She's ngmi

Sorry anon.

>>26026516

Next time use a hardware wallet/dedicated device for handling your crypto and enable 2fa.

> hello gf of OP, we will reverse the ETH transaction through the blockchain, just give us one second

>>26026516
2.5 ETH is like 4 grand?
Sucks but her account got compromised most likely due to her own incompetence.
Let her know her coins are gone, and let it be a hard, expensive lesson.

>>26026516
Why did she keep her ETH on an exchange? Why was her password "123456!" ?

>>26026639
Stop please this sucks man, I feel responsible somehow frens

can you see the ip of who logged on?
Im assuming she probably got sim swapped and had text verification or something

>>26026681
Can you please explain more in detail, I heard of this situation before on other cases reported

reminder to always keep most of your coins off exchange and for your exchange accounts always use the global safety locks and 2fa authentication (NOT A TEXT MESSAGE ONE BECAUSE YOU CAN GET SIM SWAPPED EASILY)

>no 2fa for log ins and transfers
Ngmi.

>>26026658
how did you guess my password, amazing!

>>26026516
Her other bf was playing on her phone and sent himself the ETH

I have my own ETH on kikebase what the fuck do i do to prevent it from hitting me I'm scared as fuck, Buy Trezor ?

>>26026737
someone can find your personal details online (for example ledger leak gives full name linked to phone number address etc)
even right now with a first and last name i can find most info about people including mother's maiden, previous ownership of cars, all sorts of data.
So then I call the phone company and say Hi this is "your name" i lost my phone and need you to active my sim to my new phone
then they ask a few security questions (easy to find the answers often times is basically just confirm you address)
Then bam sim is swapped so now i am in control of your phone number.
So then I access your account (she probably was part of a database leak somewhere, if you re use passwords its been leaked 95% chance)
When coinbase asks for text verification to sign in i control your phone number to sign in, also the email, etc. basically just a full account take over
this is why its important to use a google authentication style app, or even better a yubikey. This helps to slow down account takeovers because the attacker will have to manually recover your account and within the time it takes you will likely take notice of someone trying to take over the account.
t. cybersecurity guy

>>26026927
you should use a hardware wallet because even if you harden your online accounts through >>26026941 methods you are still vulnerable to exchange hacks, bank bail ins, etc. by leaving your coins on exchange

>>26026516
did she have any 2FA enabled?

you failed to protect her from scams.

>>26027012
Can you link a Wallet to purchase ? Any in particular I have a feeling he might try to sim swap me due to the proximity of being her partner. At this point should I immediately use a Authenticator Application ?

>>26027103
yes, why wait?

>using a custodian that doesn't use FIDO2
geminichads keep winning

>>26026681
>>26026737
this has been a common thing.
this actually happened to me recently and i had to get a new sim card and phone number.
its due to all these new scams out as well as the ledger hack. alot of people's emails got compromised and people are literally SIM swapping phones left and right.

They got into my binance account but thankfully im not a retard and dont leave my shit on exchanges.
tell her to get a new sim card and phone number as well as a new phone if you want to be super secure.
change all your passwords and migrate your important accounts to new emails.

I love Crypto but man does this shit happen with Stock Market Exchanges as well ?

>>26027103
You need to do some research into security of these things before investing significant capital somewhere you don't understand.

2FA has different methods, SMS auth being vulnerable to sim swapping.

"one time key" authenticator apps like Google Authenticator or Authy work best.

also do yourself a favor and start using password manager if you don't already + setup app based 2FA everywhere

>>26027060
SIM SMS identity trumps 2FA in some accounts. its a flawed system.
i have 2FA on everything and they still got into my email, my phone account, and my binance account

>>26026767
>>26027060
She used Text 2fa, I'm going to immediately find a authenticator App and order a trezor

>>26026516
>thinking your gf did not send her new man money

Hi, Jim from Coinbase here.

We're so sorry to hear about your issue. We value our users experience highly unless they are not black.

Given the situation, we will need to verify the identity of your girlfriend in order to reverse the transaction. The following may be submitted to Jim.CoinBase@gmail.com to begin the identity verification process.
>Side and frontal pictures of her breasts can help verify her identity.
>Documents of her vagina print as a double factor verification can speed up the process as well.
Should her identity be positively verified, her Eth will return to her account within 6-8 Business days.

Hopefully we can resolve your issue, provided neither you nor your gf are african american, in which case fuck off our platform.

Best,
Coinbase Support.

>>26027196
well, do you use a password to login to your stock trading app? do you also use SMS 2FA? it's the same thing

>>26027275
kek

>>26026516
is none of you faggots using autenticator as a 2FA?

>>26027299
kek as well

>>26027299
kek

>>26026516
Awwww!! I'm so sorry anon, maybe if you share us some nudes we could help you. A fren helps a fren till the end, don't be sad, we will find that evil man but first deliver.

>>26026516
Fake and gay

>>26027266
Just use google authenticator app

>>26027155
>>26027187
>>26027224
>>26027232
I Downloaded Google Authenticator on my own account before a fucking nigger takes me ETH.

Can someone assist me one last time on how to use google authenticate for coinbase.

Ill deliver some nudes for you guys because your giving me actual advice

The fact that something as lucrative as a crypto exchange still offers SMS as a 2FA method is insane. Who the fuck is in charge of security at these places?

>>26026516
>women in crypto
biggest joke ive ever heard

Is there a way i can add extra security to my metamask? I have a Yubikey but dont know how i can connect it.

>>26027265
This is disgustingly retarded - I’m going to see if I can remove my phone number as 2FA

Can someone explain me why sms authentication is bad
I'm dumb

>>26027904
sim spoofing

>>26027957
I mean sim swapping. Basically it's not hard for people to steal your number

>>26027991
Oh so i should add 2fa everywhere? I already got in in most places but im afraid what happens if i lose my phone or smth

>>26026516
not your keys...not your coins. how many times do we have to tell you retards this?

>>26027187
Is Google Authenticator fool proof?

>>26028089
You can use Authy. It’s an authenticator app with cloud backup. Definitely less secure than Google Authenticator (which has no backup), because the cloud backup could get hacked, but you won’t get locked out of your accounts if you lose your phone. Alternatively, set up multiple authenticators, so if you lose one you’re not locked out.

>>26026639
>we have called vitalik and he says he will refund you the full amount

>>26026927
Get the Duo authenticator app. It's tied to your phone's serial # so is immune to sim cloning like sms.

Also, don't keep much crypto in an exchange, only what you're currently working with. Keep at least a couple separate hot wallets and some paper wallets for cold storage.

OP Here I just got Google Authenticator for my Coinbase Access for myself, I was scared this would happen to me shortly due to the fact that I'm literally her bf. You guys Truly do care and I want to thank the frens that helped me find out what exactly occurred. Sim Swapping is Terrified and I'm shocked that an exchange would allow such lenient security. I take full responsibility for this occurring and ill make it up to her in some form.

- Thank you Frens

Love you

>>26028353
fuck forgot to clear stupid fucking name from that gay "i am chronos" thread

>>26026516
I mean... Its 4grand, how can you not double,triple quadruplesecure the account with Quadruplefacture authentificator. Srsly This way your account can't get compromised. When I log into binance I have to enter the Code I receive by SMS on my phone. Someone who wants to hack my binance account would have to figure out what Password I have + phone I have and what IP it has, then he'd have get spyware to get the key and log in.... (not to mention I'd still be notified by the login)

Glad I saw this thread, didn't know SIM swapping was a thing. Moved everything over to Authy. Looking into getting a hardware wallet now. Sorry about your girl losing lots of money, but at least you helped one anon secure his money better. Hope things work out.

bumping because i had something similar happen today and i wasn't going to make a thread about it
i made a transaction from one exchange to another, namely whiteBIT, in ETH, and it never arrived. i inspected the contract on etherscan and it turns out after it was deposited to my whiteBIT wallet (although i never received email confirmation of deposit - nor withdrawal for that matter - and yes i do have authy 2FA blabla), it fucking was withdrawn from there and transferred to whiteBIT address (0x39F6a6C85d39d5ABAd8A398310c52E7c374F2bA3)

i don't know what i can do except for contact customer support, but can't see how they'd credit the money back to me or what would be the best way to go about it, shit's simply gay and fucked

tldr; whiteBIT jewed me out of ether transaction wtf do i do and how can this even happen lole

What are the best steps to secure crypto?

>>26027187
google auth seems to work great. my issue was that these shitty websites had mobile SMS 2FA as well as authenticator and they use the SMS auth over the authenticator for some reason.
>>26027638
just download it and enable it on coinbase. it will ask you to scan a QR code. once it scans it you will then have to use it to access most of coinbase's features like selling and sending transactions.

GET AUTHENTICATOR
MAKE SURE YOU REMOVE ANY TYPE OF SMS AUTHENTICATION. Make sure SMS auth is off, even if they require your phone number, make sure you dont have the box checked that says "allow mobile texts and sms"

>>26028403
im very happy for you sir. I wish you well and future riches, fren
stay safe boys

>>26028814
You can't remove sms auth or remove phone numbers.

>>26028403
where are the nudes, faggot.

I'm a crypto newfag and after reading this thread is it worth getting a second phone just for sites like binance? Is SMS verification really that insecure?

If you have Verizon, enable "Number Lock" and it'll prevent you from being SIM swapped.

>>26028770
- HW Wallet or air gapped laptop
- MFA with Google Authenticator or Authy
- Never use SMS authentication
- If your carrier allows it, lock your number to disable people from porting (SIM swapping)

The first 2 at bare minimum

This is my Gf Nudes, My word is my bond frens, its not the greatest but for a humble man it gets it done

>>26030483
based

>>26030483
Op wasn't a fag for a change.

>>26030483
>brown hole
Eeww