Coinbase Calling
3 months ago in /c/SocialEngineering
2 comments
Hey,
This is the wave right now and it is definitely paying out. There are multiple ways to go about this, but here's where I've had most success. This is particularly targeting Coinbase Wallet users.
Requirements:
- Data (private, high quality data is what you want)
- P1 (aka Press One bot... not necessary but will save you a lot of time)
- SIP login (for number spoofing)
- Mailer for coinbase (to spoof email as if it's coming from coinbase.com)
- Coinbase wallet phishing page
Once you see the requirements, you will realize this is pretty straight forward. The objective here is to phish the target's seed phrase. You want confirmed name, phone numbers and emails of Coinbase wallet users. You will take these phone numbers and enter them into your P1. The P1 calls the target and will say something along the lines of "There is unauthorized log in on your account, press 1 if this wasn't you... etc". Obviously, even though the call will be coming from Coinbase's real number, many people are smarter or maybe won't even answer the phone. You don't want to talk to them anyways. Targets that press 1 are the real targets. Once you get a hit, you will use your SIP to call the target from Coinbase number. You will basically confirm that there is sus activity on their account, and then send them an email saying that they must reset their seed phrase. The email should contain a link to your phishing page. From there, it is up to the user to enter their seed phrase.
That's it. Straight forward. Has potential to be very lucrative. I have made 7 figs off this in the last month alone and I know people that have made 8-9 figs off this.
BW
This is the wave right now and it is definitely paying out. There are multiple ways to go about this, but here's where I've had most success. This is particularly targeting Coinbase Wallet users.
Requirements:
- Data (private, high quality data is what you want)
- P1 (aka Press One bot... not necessary but will save you a lot of time)
- SIP login (for number spoofing)
- Mailer for coinbase (to spoof email as if it's coming from coinbase.com)
- Coinbase wallet phishing page
Once you see the requirements, you will realize this is pretty straight forward. The objective here is to phish the target's seed phrase. You want confirmed name, phone numbers and emails of Coinbase wallet users. You will take these phone numbers and enter them into your P1. The P1 calls the target and will say something along the lines of "There is unauthorized log in on your account, press 1 if this wasn't you... etc". Obviously, even though the call will be coming from Coinbase's real number, many people are smarter or maybe won't even answer the phone. You don't want to talk to them anyways. Targets that press 1 are the real targets. Once you get a hit, you will use your SIP to call the target from Coinbase number. You will basically confirm that there is sus activity on their account, and then send them an email saying that they must reset their seed phrase. The email should contain a link to your phishing page. From there, it is up to the user to enter their seed phrase.
That's it. Straight forward. Has potential to be very lucrative. I have made 7 figs off this in the last month alone and I know people that have made 8-9 figs off this.
BW