The Coinbase Commerce page requires users to enter a mnemonic phrase, raising security concerns

By: rootdata|2026/03/19 22:42:00

0

Share

copy

According to Cointelegraph, a subdomain page of Coinbase Commerce prompted users to enter their wallet recovery phrases, raising concerns among security researchers. SlowMist Yu Sin stated that it is incomprehensible why Coinbase would set up such a page, directly asking users to input their recovery phrases in plain text for asset recovery, believing this action poses serious security risks.

On-chain analyst ZachXBT pointed out that this page was previously referenced in a help document for Coinbase's Commerce product, which suggested users recover funds by importing their recovery phrases into compatible wallets like Coinbase Wallet or MetaMask, and included a link to the withdrawal tool on that subdomain. Currently, the help document is shown as deleted. ZachXBT also noted that if this page were exploited by malicious actors, it could facilitate social engineering attacks on Coinbase users targeting their recovery phrases.

-- Price

You may also like

AI Starts to Devour the Manufacturing Industry | Rewire News Morning Edition

AI Starts to Devour the Manufacturing Industry | Rewire News Morning Edition

When Bezos starts using AI to buy factories instead of building data centers, it shows that he believes the next wave of AI's value is not inside the box.

When Scaling Meets Speed, Ethereum Foundation Introduces "Hardness" to Safeguard the Base Layer

When Scaling Meets Speed, Ethereum Foundation Introduces "Hardness" to Safeguard the Base Layer

Hardness is a protocol-level commitment to Ethereum core properties, including censorship resistance, privacy, security, and permissionlessness.

Google, Circle, Stripe Flock Together to Let AI Spend Money: Payment Giants' Joys and Worries in 2026 Q1

Google, Circle, Stripe Flock Together to Let AI Spend Money: Payment Giants' Joys and Worries in 2026 Q1

The real enemy is no longer each other, but zero cost itself

$100 Billion Factory Purchase: Bezos and Middle Eastern Capital Shift AI Money from Cloud to Shop Floor

$100 Billion Factory Purchase: Bezos and Middle Eastern Capital Shift AI Money from Cloud to Shop Floor

Bezos doesn't invest in a new model; he invests in a supply chain.

Xiaomi and MiniMax both unleash their ultimate moves, signaling the start of the Agent Pricing War.

Xiaomi and MiniMax both unleash their ultimate moves, signaling the start of the Agent Pricing War.

No brand, no marketing, let developers vote with their feet in 8 days

Predicting markets has taken the spotlight, but the Perp DEX has been quietly waging war on traditional exchanges.

Predicting markets has taken the spotlight, but the Perp DEX has been quietly waging war on traditional exchanges.

During a weekend of relentless volatility, while traditional financial markets were closed, another wave of investors was busy trading gold, oil, and silver on a blockchain platform.

Is the Market Slump Still Making Millions a Day? Is pump.fun's Revenue Real?

Is the Market Slump Still Making Millions a Day? Is pump.fun's Revenue Real?

If it's really that profitable, what's keeping $PUMP's price down?

Understanding x402 and MPP in One Article: The Two Paths of Agent Payments

Understanding x402 and MPP in One Article: The Two Paths of Agent Payments

x402 for in-protocol payments, MPP for off-chain payments

Quick Look at the Latest 18 Graduation Projects from Alliance: Who's the Next Pump.fun?

Quick Look at the Latest 18 Graduation Projects from Alliance: Who's the Next Pump.fun?

The project's core innovation areas include stablecoin payments, AI applications, prediction markets, and RWA tokenization.

It's not just the prediction market that profits from the Iraq War

It's not just the prediction market that profits from the Iraq War

Always maintaining the ambiguity of regulation with "offshore" may be the consensus of the perp DEX.

The "bank card" of AI has caught the attention of the giants

The "bank card" of AI has caught the attention of the giants

AI has not learned how to spend money yet, and the people who fix banks for it have already arrived.

Morning News | U.S. SEC approves tokenized trading on Nasdaq; Animoca Brands announces investment in AVAX tokens; Algorand Foundation completes strategic integration

Morning News | U.S. SEC approves tokenized trading on Nasdaq; Animoca Brands announces investment in AVAX tokens; Algorand Foundation completes strategic integration

Overview of Important Market Events on March 19

$70 trillion wealth transfer, the financial gateway is being rewritten | Interview with Robinhood CEO Vlad Tenev

$70 trillion wealth transfer, the financial gateway is being rewritten | Interview with Robinhood CEO Vlad Tenev

The next key competition in the financial sector may revolve around where the "intergenerational wealth transfer" of up to $90 trillion will ultimately flow.

Whale Opens 20x Oil Short on Hyperliquid With 5.6M USDC at Risk

Whale Opens 20x Oil Short on Hyperliquid With 5.6M USDC at Risk

Key Takeaways A significant leveraged short position on crude oil has been initiated on Hyperliquid using 5.6 million…

Bitcoin: The Ultimate Hedge Against Chaos

Bitcoin: The Ultimate Hedge Against Chaos

Key Takeaways Michael Saylor, co-founder of Strategy, firmly believes Bitcoin is the ultimate hedge against macroeconomic chaos. Strategy…

“Set 10 Major Targets First,” Whale Reopens Long Positions in Bitcoin

“Set 10 Major Targets First,” Whale Reopens Long Positions in Bitcoin

Key Takeaways A prominent cryptocurrency whale known as @Jason60704294 has reopened a long position in Bitcoin. The whale…

Analysis: Despite Bitcoin’s Price Dip, Bullish Trends Persist

Analysis: Despite Bitcoin’s Price Dip, Bullish Trends Persist

Key Takeaways Despite Bitcoin’s decline below $71,000, its bullish momentum remains strong, with significant buying activity from ETFs…

DeFi Protocol Neutrl Faces Potential Security Breach

DeFi Protocol Neutrl Faces Potential Security Breach

Key Takeaways The DeFi protocol Neutrl has reported a suspected attack on its front-end interface, urging users to…

AI Starts to Devour the Manufacturing Industry | Rewire News Morning Edition

When Bezos starts using AI to buy factories instead of building data centers, it shows that he believes the next wave of AI's value is not inside the box.

When Scaling Meets Speed, Ethereum Foundation Introduces "Hardness" to Safeguard the Base Layer

Hardness is a protocol-level commitment to Ethereum core properties, including censorship resistance, privacy, security, and permissionlessness.

Google, Circle, Stripe Flock Together to Let AI Spend Money: Payment Giants' Joys and Worries in 2026 Q1

The real enemy is no longer each other, but zero cost itself

$100 Billion Factory Purchase: Bezos and Middle Eastern Capital Shift AI Money from Cloud to Shop Floor

Bezos doesn't invest in a new model; he invests in a supply chain.

Xiaomi and MiniMax both unleash their ultimate moves, signaling the start of the Agent Pricing War.

No brand, no marketing, let developers vote with their feet in 8 days

Predicting markets has taken the spotlight, but the Perp DEX has been quietly waging war on traditional exchanges.

During a weekend of relentless volatility, while traditional financial markets were closed, another wave of investors was busy trading gold, oil, and silver on a blockchain platform.

Popular coins

Latest Crypto News

14:42

Caixin: The operational institutions for digital renminbi are expanding, and 12 commercial banks may join the game

According to Caixin, after 10 banks including the six major state-owned banks, 12 commercial banks may connect to the central bank's digital renminbi system. It is reported that seven national joint-stock banks, including Shanghai Pudong Development Bank, Guangfa Bank, Huaxia Bank, Minsheng Bank, CI...

14:42

Data: A certain revolving loan has gone long on BTC, with a whale liquidating positions, realizing a loss of 14.02 million USD

According to on-chain data analyst Yu Jin's monitoring, a whale that was long on BTC through a circular loan has liquidated its position, realizing a loss of 14.02 million dollars.It is reported that this address has leveraged longed 742.8 WBTC over the past year by using WBTC as collateral to borro...

14:42

Data: The cryptocurrency market has fallen for three consecutive days, with BTC's decline narrowing, and only the AI and GameFi sectors remaining relatively strong

According to SoSoValue data, the cryptocurrency market sector has fallen for three consecutive days, with the SocialFi sector dropping 4.65% in the last 24 hours. Within this sector, Toncoin (TON) decreased by 5.48%. Meanwhile, Bitcoin (BTC) fell 0.88% in 24 hours, briefly dropping below $69,000, bu...

14:42

GoPlus: A user signed a malicious transaction loss of $200,000, beware of Permit/Approve phishing attacks

According to GoPlus security monitoring, an address starting with 0x9709 signed malicious Permit and Approve transactions, resulting in approximately $200,000 worth of USDC and wmtUSDT being stolen by phishing attackers.GoPlus states that users should carefully verify transaction details and contrac...

14:42

Data: The GMGN KOL leaderboard shows that TENDIES is receiving a lot of attention, attracting net inflows from multiple KOLs

According to GMGN data, the top 5 tokens with net inflow of KOL in the past 24 hours are as follows:TENDIES (2Vc9....oon): Net inflow of $3,000, 24-hour increase of 198%, currently priced at $0.0001.AIFRUITS (6Bp9....ump): Net inflow of $2,000, 24-hour increase of 52.5%, currently priced at $0.0008....