Your phone buzzes with a text claiming your Coinbase account is "locked" or "under attack." Your heart skips. Before you tap that link, take a breath — chances are you're looking at the latest wave of the Coinbase text scam, a slick phishing scheme that's been draining crypto wallets across the country.

These fake SMS messages are getting more convincing by the week, mimicking Coinbase's branding, sender IDs, and even verification codes. Knowing how the scam works, and what to do if you've already clicked, can be the difference between keeping your funds and losing everything overnight.

What Is the Coinbase Text Scam?

The Coinbase SMS scam is a type of phishing attack where fraudsters send text messages pretending to be from Coinbase, the popular U.S.-based crypto exchange. The goal is simple: trick you into handing over your login credentials, two-factor authentication codes, or recovery phrase so the attackers can drain your account.

Scammers usually impersonate Coinbase's customer support, security team, or automated alerts. They'll claim suspicious activity was detected, a withdrawal needs confirming, or your account is being closed unless you "verify" your identity immediately. The link inside the text leads to a convincing — but fake — website designed to harvest your details.

Because Coinbase is one of the most widely used exchanges in the world, it has become a favorite target. A single successful scam can net attackers thousands of dollars in seconds, especially from users who keep large balances on the platform.

How the Attack Typically Unfolds

The scam usually follows a predictable playbook:

  • You receive a text from what looks like a legitimate Coinbase number, often using spoofed sender IDs.
  • The message creates urgency — "unauthorized login detected," "withdrawal pending," or "account suspended."
  • A link is included, directing you to a fake site that looks identical to Coinbase's login page.
  • If you enter your email, password, and 2FA code, the scammers capture it instantly.
  • Within minutes, your crypto is transferred out to wallets you can't recover.

Red Flags That Scream "Coinbase Phishing Text"

Even the most polished scam has telltale signs. Train your eyes to spot these warning signs before you tap anything:

  • Generic greetings. Real Coinbase alerts usually address you by name or the email tied to your account.
  • Suspicious links. Check the URL — if it doesn't start with coinbase.com or a verified Coinbase domain, walk away.
  • Spelling and grammar mistakes. Coinbase is a billion-dollar company; their copy is clean.
  • Requests for sensitive info. Coinbase will never ask for your password, 2FA code, or recovery phrase via text.
  • Pressure tactics. "Act now or lose access" is a classic scam move designed to short-circuit your thinking.
  • Weird sender info. Random numbers or odd short codes instead of an official Coinbase short code.
Golden rule: If a text makes you panic, it's probably a scam. Real security alerts give you time to react.

What to Do If You Already Clicked the Link

Don't beat yourself up — these scams are designed to fool even experienced crypto users. Speed is your best friend right now.

Step 1: Disconnect and Lock Down

If you entered any information, change your Coinbase password immediately from a different device. Then revoke any active sessions in your account settings. If you use an authenticator app or hardware security key, make sure those 2FA codes haven't been compromised, and rotate them if possible.

Step 2: Move Your Crypto

If you suspect your account has been breached, transfer your remaining crypto to a fresh wallet — ideally a hardware wallet — tied to a brand-new email you've never used with Coinbase. Time is critical; attackers often wait for you to deposit more funds before making their move.

Step 3: Check Connected Apps

Scammers sometimes add third-party apps or API keys to maintain access even after a password reset. Log in and remove any unfamiliar integrations right away.

Step 4: Document Everything

Screenshot the scam text, the sender's number, the fake URL, and any transactions you can identify. This evidence will be crucial when you file reports with Coinbase, regulators, and law enforcement.

How to Report a Coinbase Text Scam

Reporting helps protect the next person. Here's where to send the evidence:

  • Coinbase Security: Forward the suspicious text to security@coinbase.com and delete it after.
  • FTC: File a complaint at ReportFraud.ftc.gov — it's fast and helps regulators track patterns.
  • FCC: Forward unwanted texts to 7726 (SPAM) — the official shortcode used by U.S. carriers.
  • Your carrier: Most major carriers accept scam reports via 7726 or their own spam-reporting tools.
  • Local authorities: If you lost funds, file a police report. It's tedious but often required for insurance or tax-loss claims.

Coinbase has also added an in-app reporting feature inside the help center. Use it — the more reports they receive, the faster they can take down phishing domains.

How to Protect Yourself Going Forward

Once the dust settles, lock your account down like Fort Knox.

Enable the strongest form of 2FA available — a hardware key like a YubiKey is far safer than SMS codes, which can themselves be hijacked via SIM-swapping attacks. Use a unique password stored in a reputable manager, and never reuse your email-password combo anywhere else.

Bookmark the official Coinbase site and only log in through that bookmark. Avoid clicking links in texts, emails, or social media DMs, no matter how real they look. And finally, consider keeping only a small trading balance on any exchange; long-term holdings belong in cold storage where no phishing text can reach them.

Key Takeaways

  • The Coinbase text scam is a phishing attack using fake SMS alerts to steal credentials and funds.
  • Real Coinbase alerts never ask for passwords, 2FA codes, or recovery phrases via text.
  • If you clicked, change passwords, move funds, and revoke connected apps immediately.
  • Report every scam text to Coinbase, the FTC, your carrier, and the 7726 shortcode.
  • Hardware 2FA, unique passwords, and cold storage are your strongest long-term defenses.

Stay skeptical, stay slow, and remember: when in doubt, log in directly to coinbase.com — never through a link someone else sent you.