MarketAlert – Real-Time Market & Crypto News, Analysis & AlertsMarketAlert – Real-Time Market & Crypto News, Analysis & Alerts
Font ResizerAa
  • Crypto News
    • Altcoins
    • Bitcoin
    • Blockchain
    • DeFi
    • Ethereum
    • NFTs
    • Press Releases
    • Latest News
  • Blockchain Technology
    • Blockchain Developments
    • Blockchain Security
    • Layer 2 Solutions
    • Smart Contracts
  • Interviews
    • Crypto Investor Interviews
    • Developer Interviews
    • Founder Interviews
    • Industry Leader Insights
  • Regulations & Policies
    • Country-Specific Regulations
    • Crypto Taxation
    • Global Regulations
    • Government Policies
  • Learn
    • Crypto for Beginners
    • DeFi Guides
    • NFT Guides
    • Staking Guides
    • Trading Strategies
  • Research & Analysis
    • Blockchain Research
    • Coin Research
    • DeFi Research
    • Market Analysis
    • Regulation Reports
Reading: Coinbase, Microsoft and Europol shut down ‘Tycoon 2FA’ phishing service
Share
Font ResizerAa
MarketAlert – Real-Time Market & Crypto News, Analysis & AlertsMarketAlert – Real-Time Market & Crypto News, Analysis & Alerts
Search
  • Crypto News
    • Altcoins
    • Bitcoin
    • Blockchain
    • DeFi
    • Ethereum
    • NFTs
    • Press Releases
    • Latest News
  • Blockchain Technology
    • Blockchain Developments
    • Blockchain Security
    • Layer 2 Solutions
    • Smart Contracts
  • Interviews
    • Crypto Investor Interviews
    • Developer Interviews
    • Founder Interviews
    • Industry Leader Insights
  • Regulations & Policies
    • Country-Specific Regulations
    • Crypto Taxation
    • Global Regulations
    • Government Policies
  • Learn
    • Crypto for Beginners
    • DeFi Guides
    • NFT Guides
    • Staking Guides
    • Trading Strategies
  • Research & Analysis
    • Blockchain Research
    • Coin Research
    • DeFi Research
    • Market Analysis
    • Regulation Reports
Have an existing account? Sign In
Follow US
© Market Alert News. All Rights Reserved.
  • bitcoinBitcoin(BTC)$73,041.002.69%
  • ethereumEthereum(ETH)$2,141.364.50%
  • tetherTether(USDT)$1.000.01%
  • binancecoinBNB(BNB)$660.321.62%
  • rippleXRP(XRP)$1.443.63%
  • usd-coinUSDC(USDC)$1.000.00%
  • solanaSolana(SOL)$91.973.24%
  • tronTRON(TRX)$0.284265-0.03%
  • Figure HelocFigure Heloc(FIGR_HELOC)$1.02-0.99%
  • dogecoinDogecoin(DOGE)$0.0962324.52%
Crypto NewsBlockchain

Coinbase, Microsoft and Europol shut down ‘Tycoon 2FA’ phishing service

rahulbadiyafad150c105
Last updated: March 5, 2026 10:32 am
rahulbadiyafad150c105
Published: 8 hours ago
Share

A joint operation involving technology companies and law enforcement agencies, including Coinbase, has dismantled the core infrastructure behind Tycoon 2FA, a major phishing-as-a-service platform that provided tools designed to bypass multi-factor authentication.

Contents
  • Tycoon tools used to bypass multi-factor authentication
  • One of the largest phishing platforms globally

Europol announced Wednesday that Microsoft helped block 330 domains associated with the platform, while authorities also seized additional infrastructure used to run the service.

Financial tracking played an important role in the investigation. Coinbase said it assisted by tracing blockchain transactions linked to funding the Tycoon 2FA operation, which helped investigators identify the platform’s suspected administrator and several of its users.

“Taking Tycoon’s core infrastructure offline cuts off a major pipeline for credential theft and initial access, forcing criminals to rebuild, retool and take on greater risk,” Coinbase said.

Phishing scams were identified as the second-largest threat in 2025 by blockchain security firm CertiK, with crypto investors losing $722 million across 248 incidents. A spokesperson for PeckShield told Cointelegraph on Monday that phishing continues to be a “persistent threat” in 2026.

Tycoon tools used to bypass multi-factor authentication

Tycoon’s toolkit included spoofed landing pages designed to mimic legitimate websites and steal user credentials. According to Coinbase, the platform also captured session cookies and authentication tokens, allowing attackers to bypass multi-factor authentication (MFA).

Typically, when a user logs in with MFA enabled, the system generates a session token that serves as proof of authentication and is stored in the user’s browser. If attackers obtain this token, they can use it to trick the system into granting access without needing to pass MFA again.

“This combination — high-fidelity phishing lures and session-token theft — makes phishing a reliable gateway to more serious crimes such as account takeovers, business email compromise, invoice fraud and further social engineering attacks,” Coinbase said.

One of the largest phishing platforms globally

Tycoon has been active since at least 2023, according to Steven Masada, assistant general counsel at the Digital Crimes Unit of Microsoft. By mid-2025, the platform was responsible for 62% of phishing attempts blocked by Microsoft, including more than 30 million malicious emails in a single month.

“That placed Tycoon 2FA among the largest phishing operations in the world,” Masada said, adding that the platform lowered the technical barriers for cybercriminals, enabling individuals with limited expertise to run sophisticated impersonation campaigns.

Masada noted that organizations across multiple sectors — including healthcare and education — were targeted by the platform. Attacks linked to Tycoon 2FA led to rerouted invoices, theft of sensitive information, network lockouts and even disruptions to patient care.

“Taking this infrastructure offline cuts off a major pipeline for account takeovers and helps protect individuals and organizations from follow-on attacks such as data theft, ransomware, business email compromise and financial fraud,” he said.

Share this:

  • Share on X (Opens in new window) X
  • Share on Facebook (Opens in new window) Facebook

Like this:

Like Loading...

Related

Coinbase Strategy 2026: Three Pillars for Global Finance
Ethereum Supply Shrinks as Whale Accumulation Intensifies
Jennifer Griffin Proves Pete Hegseth Correct, and the LA Times Coaches Residents to Break the Law
Trump Launches $249 ‘Trump Fragrances’ Collection – Internewscast Journal
Altcoins benefit from capital rotation as Bitcoin dominance slides amid consolidation | Analysis featured | CryptoRank.io
TAGGED:AltcoinBlockchainBusinesscryptocurrenciesCybercrimeCybersecurityPhishingScamsScams & Cybercrime

Sign Up For Daily Newsletter

Be keep up! Get the latest breaking news delivered straight to your inbox.
By signing up, you agree to our Terms of Use and acknowledge the data practices in our Privacy Policy. You may unsubscribe at any time.
Share This Article
Facebook Email Copy Link Print
Previous Article 「Whale」 Increases ETH Long Position to $14.4M, Doubling Down on Long with Principal Now Tripled – Lookonchain – Looking for smartmoney onchain
Next Article GoFundMe created to help former St. Louis City sheriff with legal fees
© Market Alert News. All Rights Reserved.
 

Loading Comments...
 

    Welcome Back!

    Sign in to your account

    Username or Email Address
    Password

    Prove your humanity


    Lost your password?

    %d