A new phishing tactic targeting Coinbase users is raising eyebrows across the crypto space, after a TikTok user narrowly avoided being duped by a sophisticated phone and email scam.
The incident has gone viral, not just for the complexity of the con, but for how real it appeared—complete with a US-based number, fluent American accent, and emails sent from what seemed to be an authentic Coinbase domain.
The TikTok creator, known as Steve (@tripiville), described how the scam started with an automated voicemail claiming to be from Coinbase.
It warned him of suspicious activity on his account and advised him to “press 1” to confirm his identity.
Minutes later, a follow-up call came from California—this time, a human voice in an American accent claiming to be a Coinbase representative.
Steve recounted,
“He said, ‘This is Coinbase. There’s been an alert on your account—a request to change your email and phone number through the online chat.’ He told me I’d receive a link. I checked the sender, and it was from Coinbase.com.”
This level of apparent legitimacy gave the scam an edge.
Source: pexels
According to Steve, the caller was calm, fluent, and persuasive.
The scammer cited Steve’s full name, email address, and home address—personal data likely obtained from previous data leaks, including Coinbase’s own breach in May that exposed sensitive user information.
After receiving a convincing-looking email, Steve clicked on a link that led to a page appearing to be part of Coinbase.
It asked him to deny fake login attempts and select the estimated range of his crypto balance.
Though Steve remained skeptical, he still chose a range.
He asked the caller,
“Why do you need to know that?”
The response:
“That’s just to verify you are who you are.”
But the final red flag came when the site displayed a MetaMask logo and prompted Steve to input his 12-word seed phrase, supposedly to disconnect third-party wallets from his Coinbase account.
“I understood that I should not do that.”
When he told the caller he didn’t have the passkey available, the tone shifted.
The scammer insisted he do it immediately.
When Steve refused, the call abruptly ended.
Coinbase’s status as one of the largest cryptocurrency exchanges and its reputation for beginner-friendly services make it an attractive target for scammers.
The situation worsened after an insider data leak in May 2025 exposed sensitive user information, which appears to have been exploited in this phishing campaign.
This incident reflects a broader rise in crypto scams.
According to The Motley Fool, scammers collected $472 million from Americans in the first quarter of 2025 alone, a sharp increase from $336 million the previous year.
Source: The Motley Fool
These criminals are becoming more adept at using personal data and sophisticated tactics to deceive victims, often exploiting psychological triggers like fear and urgency.
While Steve avoided the worst, cybersecurity experts warn that his actions—answering a flagged spam call, clicking unverified links, and interacting with unknown agents—still exposed him to unnecessary risks.
He even confirmed his crypto holdings during the call, which could make him a future target.
He never independently verified the caller by ending the call and contacting Coinbase directly.
And by engaging with the scammer for so long, he may have inadvertently confirmed that he’s an active and engaged crypto user—data that’s valuable to fraudsters.
Steve’s case ended without financial loss because he was aware enough to recognise red flags.
However, those new to cryptocurrencies may not be so lucky.
The scammer’s tactic of impersonating customer support and presenting convincing emails could easily trap inexperienced users.
Source: Freepik
The fear of losing access to one’s account or funds makes people vulnerable to handing over sensitive information.
The scammer’s goal is quick gain rather than maintaining long-term contact.
If a target resists or verifies independently, scammers typically move on, deeming the person a poor investment of their time.
While Steve managed to escape this particular attempt, his experience highlights the growing sophistication of crypto phishing scams and the dangers they pose even to cautious users.
Clicking links from unexpected emails and engaging with unsolicited calls can expose anyone to serious risk.
With millions being stolen every quarter, the crypto community must treat any unexpected communication with suspicion, verify through official channels, and never share seed phrases or private keys.
As crypto becomes more mainstream, the battle between user security and scammers’ evolving tactics will intensify.
Being sceptical, informed, and proactive may be the best defence in a world where even a call that sounds legitimate can turn out to be a trap.
Bitcoin surged past $64,000 on Monday, with analysts combining technical indicators such as RSI, order book liquidity and moving averages to suggest that a breakout above $65,000 is increasingly likely.
AlexThe Liberal Party of Australia has launched the country's first fully AI-generated political advertisement, featuring a deepfake of ACT Chief Minister Andrew Barr, ahead of the 2024 federal election. This raises concerns about the implications of AI in politics, prompting calls for urgent regulation to protect the electoral process.
JoyChinese stocks opened higher on Monday and Bitcoin surged above $64,000 as investors assessed the potential impact of economic stimulus measures announced by the Ministry of Finance over the weekend.
MiyukiEthereum founder Vitalik Buterin sold a large number of meme coins over the weekend and cashed in $2.23 million. He previously stated that all tokens sent to him without permission would be sold and donated to charity, and the market speculated that this would be the case this time as well.
WeiliangNTT Communications and SoftBank are using AI technology to protect call center employees in Japan from increasing abusive customer behavior, known as "kasu-hara." These innovations aim to reduce the emotional stress on workers and improve customer interactions by monitoring calls and softening the tone of complaints.
WeatherlyCambridge University’s Museum of Zoology is launching an innovative project that allows visitors to interact with AI-generated voices of extinct and living animals to learn about their lives and the biodiversity crisis. The exhibits will provide personalized conversations in over 20 languages, aiming to foster empathy and raise awareness about environmental conservation.
WeatherlyThe rise of generative AI is pushing software engineers to acquire new skills, such as prompt engineering, to remain relevant in their roles. Despite fears of AI replacing jobs, experts emphasise that it will create new opportunities and enhance productivity in the software development field.
AnaisAn on-chain investigator has tied YouTuber MrBeast to over $10 million in profits from token launches seen as possible pump-and-dump schemes. While no laws were broken, the situation raises ethical concerns in the crypto community. Is MrBeast knowingly involved, or an unwitting victim?
CatherineGoogle is turning to nuclear energy to meet the growing power needs of its AI data centres, partnering with Kairos Power to use small modular reactors. This move helps secure a reliable and clean energy source to support the tech giant's AI growth.
JoyIn 2013, James Howells mistakenly discarded a hard drive with Bitcoin mined in 2009, now worth over $520 million. He's suing Newport Council for permission to search the landfill. Will he recover his fortune, or will it remain lost?
Kikyo