Coinbase Commerce page requests seed phrases, raising security concerns
A Coinbase subdomain linked to its Commerce tool reportedly directed users to a withdrawal page asking to enter their seed phrases, raising concerns among security observers.
A Coinbase subdomain associated with the exchange's Commerce tool has been directing users to a suspicious withdrawal page requesting seed phrases, according to security observers. The incident involves a legitimate Coinbase Commerce domain that reportedly linked users to a page asking them to input their private seed phrases, a practice that violates standard cryptocurrency security protocols.
Coinbase Commerce is the company's payment processing service that allows merchants to accept cryptocurrency payments directly. The platform typically operates independently from users' personal wallets, making requests for seed phrases highly unusual and potentially dangerous. Seed phrases are private keys that provide complete access to cryptocurrency wallets and should never be shared with third parties or entered on websites.
The incident highlights ongoing security vulnerabilities in the cryptocurrency ecosystem, where phishing attempts and fraudulent pages continue to target users' private information. Such security lapses can undermine confidence in established platforms and remind users of the importance of maintaining strict security protocols when handling digital assets.
Industry observers are monitoring Coinbase's response to the reported incident and whether additional security measures will be implemented across the Commerce platform. Users are advised to verify the authenticity of any withdrawal pages and never enter seed phrases on websites, regardless of their apparent legitimacy.
Source: Cointelegraph
