Coinbase Faces Criticism Over Unsafe Seed Phrase Recovery Page

Coinbase Faces Criticism Over Unsafe Seed Phrase Recovery Page

First seen 19 Mar 2026, 13:43 UTC PanewslabBeincryptoMexcChaincatcherCryptonews 80% similarity 65.2

Article Content

Browse articles
ThreatCluster

On March 19, 2026, security analysts flagged a Coinbase Commerce subdomain that prompts users to enter their mnemonic seed phrases in plain text for asset recovery. Experts, including SlowMist's founder Yu Xian, criticized this practice as it exposes users to social engineering attacks. The page was part of Coinbase's wind-down process ahead of a March 31 deadline, increasing urgency for users to recover funds. Blockchain investigator ZachXBT highlighted that this setup could be exploited by threat actors to target Coinbase users. The page's flawed design, including a problematic sitemap, allows attackers to replicate it for phishing scams. Coinbase has not yet responded to these concerns or removed the page. Previous reports indicated that users lost over $65 million to social engineering attacks in early 2025, raising alarms about the potential for renewed scams. The situation remains critical as the deadline approaches.

Key Points: • Coinbase Commerce page asks users for plaintext mnemonic phrases, risking social engineering attacks. • Experts warn that the page's design could facilitate phishing scams targeting Coinbase users. • Coinbase has not yet addressed the security concerns raised by analysts.

ThreatCluster AI

Timeline

2026-03-19
Security analysts flag Coinbase Commerce page for unsafe practices.
2026-03-19
Yu Xian posts warning about the risks of the Coinbase page.
2026-03-19
ZachXBT highlights potential exploitation of the page by threat actors.
2026-03-31
Deadline for users to recover funds from Coinbase Commerce.

Community

Browse all →