This was posted a few days ago with a much less sensational headline. Also important to note it was 6,000 users and Coinbase has made them all whole.<p><a href="https://news.ycombinator.com/item?id=28719786" rel="nofollow">https://news.ycombinator.com/item?id=28719786</a>
Person I know tried to reach Coinbase support human to no avail.<p>He searched google for "coinbase support number" and dialed the number found.<p>Friendly operator guided him to solve a problem.<p>$50k lesson learned.
Discussion last Friday (re: California notice): <a href="https://news.ycombinator.com/item?id=28719786" rel="nofollow">https://news.ycombinator.com/item?id=28719786</a>
If this is the same SS7 protocol flaw that security experts have been using to justifiably avoid SMS in 2-factor auth schemes forever now it's face palm inducing. Not that this sounds like a simple hack if they also compromised inboxes. Sounds like the victims were already very well owned at that point. Lesson learned I guess. I wonder how much it cost Coinbase.
at this point i'd just expect any exchange to be breached at some stage.<p>if you want to be be safe you should store your crypto in cold storage rather than online
If you're not running a full node on your own encrypted hardware, you shouldn't be doing anything but playing with crypto. It's almost as if the current financial system evolved over hundreds of years of hard lessons learned to have certain tradeoffs like reversible transactions that mitigate this threat for the general populace.