So like many, my account information was compromised in the Ledger hack. The other night I noticed my phone said there was a sim issue. I didn't think much about it because the last month I've been needing to reboot my phone for occasional invalid sim errors. However this time after reboot it didn't fix my problem. While looking into the issue I noticed a Coinbase account access email popup and disappear. At that point I knew what was going on. Obviously I was freaking out a little bit (a lot) because I wasn't sure how easy it may be for them to get my authenticator removed, I went on Coinbase's support and requested my account be disabled. After sending the support request, I was able to get my email secured again. At that point I could get past the Coinbase new device authorization email. I updated my Coinbase login to be a new email address. A few hours later I received an email from Coinbase support saying my account has been disabled. I confirmed by trying to login. The original email address says account is not valid and the updated email says the account is disabled. Perfect, that is what I want for now.
However, early this morning I received an email from [help@coinbase.com](mailto:help@coinbase.com) to my updated email address that says my account recovery is successful. I haven't done anything to recover this account yet. The only feedback I've received form Coinbase is them saying they have assigned my case to a specialist. I double checked by trying to login and my account still says disabled. That makes me feel better, but I'm concerned about what is going on Coinbase's side. My fear is someone may be trying to get Coinbase to unlock my account and remove the authenticator.
Does anyone who has been through this experience have some feedback? Can an email address be spoofed like you could a phone number, like [help@coinbcase.com](mailto:help@coinbcase.com)? What kind of time frame does Coinbase help in the event of a disabled account? I kind of wish I hadn't have knee jerked to have my account disabled, but I really was concerned about likely hood of having the authenticator security removed.
Additional Notes: I read a story about a year or two ago that lead me to add some security for this type of event. My phone account had a pin and security notes that explicitly say account changes can only be done in store with an ID, but according to the support log someone called repeatedly until they got the device switched. I'm so glad I had an authenticator app for my Coinbase account, but wish I had realized I should have done it on my email.
Thank you for taking the time to read.
[link] [comments]
No comments:
Post a Comment