In the aftermath of a recent data breach at Coinbase, affected users are now encountering a new form of phishing attack: fraudulent physical letters sent via postal mail. These letters impersonate Coinbase and identity protection services, aiming to deceive recipients into divulging additional personal information. 

The breach, which occurred earlier this year, involved cybercriminals bribing overseas customer support agents to access sensitive user data. The compromised information includes names, addresses, phone numbers, email addresses, and partially masked Social Security numbers. Although Coinbase has stated that passwords and private keys were not exposed, the stolen data is sufficient for scammers to craft convincing phishing attempts. 

Traditionally, phishing attacks have been conducted through digital channels such as email or fraudulent websites. However, the shift to physical mail represents an evolution in tactics, exploiting the trust associated with official correspondence. Security experts warn that this approach may be more effective in deceiving recipients, as physical mail is often perceived as more legitimate than electronic communications. 

Coinbase has not yet issued a specific statement regarding these mail-based scams. The company previously announced enhanced security measures and offered voluntary credit monitoring to affected users. Additionally, Coinbase has offered a $20 million reward for information leading to the arrest of those responsible for…