Compartir este artículo
Mozilla Closes Holes That Led to Coinbase Hacks
Hackers used two simple Mozilla vulnerabilities to spear-phish Coinbase employees.
Por John Biggs
Make us preferred on Google
A pair of simple Mozilla vulnerabilities made it easier for hackers to phish Coinbase employees. The exploit, detailed by ZDNet, was a remote code execution attack that could force machines running Firefox to install spyware to capture passwords and other data.
The two vulnerabilities - CVE-2019-11708 and CVE-2019-11707 - first appeared in April 15 and hackers used them to spear-phish Coinbase employees. When they visited sites linked in the email the browser would download a piece of spyware to steal logins and other data.
STORY CONTINUES BELOW
No te pierdas otra historia.Suscríbete al boletín de Crypto Daybook Americas hoy. Ver todos los boletines
Some detail from the exploit suggests that the bug could escalate privileges outside of the "sandbox" where most Mozilla code runs:
Insufficient vetting of parameters passed with the Prompt:Open IPC message between child and parent processes can result in the non-sandboxed parent process opening web content chosen by a compromised child process. When combined with additional vulnerabilities this could result in executing arbitrary code on the user's computer.
The two vulnerabilities combined to create a perfect storm, allowing hackers to run malware installers instantly. Researchers discovered the exploits on April 15 and they suspect that hackers saw them in Mozilla's Bugzilla bug tracking database and exploited them before they could be patched. The hack did not effect Coinbase users.
is asking users to update their browsers in order close these holes.
Image via Shutterstock.
More For You
KuCoin captured a record share of centralised exchange volume in 2025, with more than $1.25tn traded as its volumes grew faster than the wider crypto market.
What to know:
- KuCoin recorded over $1.25 trillion in total trading volume in 2025, equivalent to an average of roughly $114 billion per month, marking its strongest year on record.
- This performance translated into an all-time high share of centralised exchange volume, as KuCoin’s activity expanded faster than aggregate CEX volumes, which slowed during periods of lower market volatility.
- Spot and derivatives volumes were evenly split, each exceeding $500 billion for the year, signalling broad-based usage rather than reliance on a single product line.
- Altcoins accounted for the majority of trading activity, reinforcing KuCoin’s role as a primary liquidity venue beyond BTC and ETH at a time when majors saw more muted turnover.
- Even as overall crypto volumes softened mid-year, KuCoin maintained elevated baseline activity, indicating structurally higher user engagement rather than short-lived volume spikes.
More For You
Silver nears $1 billion in volume on Hyperliquid as bitcoin remains frozen: Asia Morning Briefing
Silver perps have more volume on Hyperliquid than SOL or XRP.
What to know:
- Silver futures on the Hyperliquid crypto derivatives exchange have surged to become one of its most active markets, ranking just behind bitcoin and ether in trading volume.
- The SILVER-USDC contract’s high volume, sizable open interest and slightly negative funding suggest traders are using crypto infrastructure for volatility and hedging in macro commodities rather than for directional crypto bets.
- Bitcoin is holding near $88,000 in a "defensive equilibrium" with cooling ETF inflows, uneven derivatives positioning and rising demand for downside protection, while ether lags and capital rotates toward hard assets like gold and silver.
Top Stories
