Phishing Scams Now Offer Bitcoins. Don't Be Fooled.

The Citizen's Guide to the Future
March 14 2014 11:58 AM

Phishing Scams Now Offer Bitcoins. Don't Be Fooled.

coinbasephish
This email isn't really from Coinbase. If you get an email promising you bitcoins, don't open it. And if you do, don't click any links.

Image from Chad Lorenz.

Phishing scams have tricked everyone from reporters at the Associated Press to Washington insiders, and what crook worth her stolen credentials would give up on such a successful strategy? So phishers are once again repurposing a classic con: Tell people they've won or been given a lot of money and that they just have to do XYZ—this is the identity- and/or money-stealing part—to claim what's owed to them. In this iteration, the phishers are dangling bitcoins as the lure.

Slate's news editor, Chad Lorenz, received the above email yesterday around 1 p.m. He quickly realized that something was wrong, even though the email looks pretty good: It's not trying too hard, it uses the Coinbase logo (Coinbase is a popular bitcoin wallet service), and it even has a copyright sign. But Lorenz wasn't expecting any money, and certainly not any cryptocurrency. Plus, assuming it was his lucky day, whose "external bitcoin account" was the bounty coming from? (Turns out that several other Slate staffers received the email as well.)

Advertisement

John OBrien, a spokesperson for Coinbase, wrote in an email that the phishing message had a few warning signs: "[T]here are a few red flags. ‘Hi,’ (not addressed to anyone) and ‘from an external account’ (not from anyone). Additionally the link will not take you to Coinbase.com."

Phishing scams promising bitcoins seem to have been percolating in January, and Coinbase published a blog post on the topic last month, noting that it had upped its security and encouraging "all customers to exercise caution when clicking links to financial institutions or payment services online."

The steps to identifying one of these scam emails are the same or very similar to what they would be if the phishers were promising U.S. dollars, or any currency. It seems probable that phishers are taking advantage of confusion about what bitcoin is and how it works in order to make people click the links. For example, according to a recent interview/check-in call, my 91-year-old grandma—who reads her email on an iPad—revealed that she thinks bitcoin works like a digital giftcard.

Protecting yourself just comes down to common sense, according to Chester Wisniewski, a senior security adviser at the data security firm Sophos. "Why are you randomly, unexpectedly being given money? How often does that happen?" he wrote in an email. "Even if you want to believe it is true (it never is), the correct course of action to verify the transaction is to go to the site claiming to have emailed you ... never click a link in an unsolicited message."

Future Tense is a partnership of SlateNew America, and Arizona State University.

Lily Hay Newman is lead blogger for Future Tense.

TODAY IN SLATE

Doublex

Crying Rape

False rape accusations exist, and they are a serious problem.

Scotland Is Just the Beginning. Expect More Political Earthquakes in Europe.

I Bought the Huge iPhone. I’m Already Thinking of Returning It.

The Music Industry Is Ignoring Some of the Best Black Women Singing R&B

How Will You Carry Around Your Huge New iPhone? Apple Pants!

Medical Examiner

The Most Terrifying Thing About Ebola 

The disease threatens humanity by preying on humanity.

Television

The Other Huxtable Effect

Thirty years ago, The Cosby Show gave us one of TV’s great feminists.

Lifetime Didn’t Find the Steubenville Rape Case Dramatic Enough. So They Added a Little Self-Immolation.

No, New York Times, Shonda Rhimes Is Not an “Angry Black Woman” 

Brow Beat
Sept. 19 2014 1:39 PM Shonda Rhimes Is Not an “Angry Black Woman,” New York Times. Neither Are Her Characters.
Behold
Sept. 19 2014 1:11 PM An Up-Close Look at the U.S.–Mexico Border
  News & Politics
Weigel
Sept. 19 2014 9:15 PM Chris Christie, Better Than Ever
  Business
Moneybox
Sept. 19 2014 6:35 PM Pabst Blue Ribbon is Being Sold to the Russians, Was So Over Anyway
  Life
Inside Higher Ed
Sept. 19 2014 1:34 PM Empty Seats, Fewer Donors? College football isn’t attracting the audience it used to.
  Double X
The XX Factor
Sept. 19 2014 4:58 PM Steubenville Gets the Lifetime Treatment (And a Cheerleader Erupts Into Flames)
  Slate Plus
Slate Picks
Sept. 19 2014 12:00 PM What Happened at Slate This Week? The Slatest editor tells us to read well-informed skepticism, media criticism, and more.
  Arts
Brow Beat
Sept. 19 2014 4:48 PM You Should Be Listening to Sbtrkt
  Technology
Future Tense
Sept. 19 2014 6:31 PM The One Big Problem With the Enormous New iPhone
  Health & Science
Medical Examiner
Sept. 19 2014 5:09 PM Did America Get Fat by Drinking Diet Soda?   A high-profile study points the finger at artificial sweeteners.
  Sports
Sports Nut
Sept. 18 2014 11:42 AM Grandmaster Clash One of the most amazing feats in chess history just happened, and no one noticed.