No products in the cart.

Coinmama Breach: Here’s The Easy Way To Protect Your Account

Security Update for CoolWallet S Community:

Crypto exchange Coinmama issued a statement about a possible security breach on February 15.

An old 2017 database with account details and hashed (encrypted) passwords was allegedly compromised.

Please note, CoolWallet users who used our CoolBitX app to register with them are not affected.

However, we recommend all Coinmama users reset your account details with them. Read further to see how.


According to Coinmama, only accounts registered before 5 August 2017 are potentially at risk. No credit cards details or actual passwords were leaked.

We added our Coinmama affiliate link on our app in late 2018, therefore our users should be unaffected, unless you registered with them through an external source.

Regardless, it’s better to be safe than sorry.

We advise all our CoinMama users to reset your passwords here and to avoid using their platform for the time being, until all investigations are completed.


Please note, we take great care in choosing our partners (Coinmama has been operating since 2013), but we have no direct control over them.

We can only control how we protect you.

Here are objective reports by and Altcoin Magazine.

Coinmama Statement (abridged)

1. What happened?

CoinMama found on February 15, 2019 that a malicious party gained access to over 450,000 user emails and hashed passwords dating from August 2017 and back. The hack is part of a much wider industry breach and apparently affects over 800 million accounts.

Coinmama immediately started to investigate the issue and notified users affected by the breach on how to protect their accounts. Affected users are now required to create a new password when logging in.

2. What information was exposed?

Coinmama believe that the database hack only pertains to emails and hashed passwords of users who registered before August 5th, 2017. The company doesn’t store credit card details nor user funds.

3. What is a hashed password? Is it your real password?

A hashed password is an encrypted long string of characters that doesn’t reveal your actual password. Therefore, if someone has the hashed password, they still don’t have your actual password.

4. Who’s responsible for the breach?

Coinmama doesn’t know yet who’s behind it. It appears to be the same party that has targeted almost 30 other companies and over 800 million old accounts since 2017.

5. What steps can I take next?

Here are the official instructions to follow, per CoinMama’s Blog:

– If you registered prior to August 5th, 2017, immediately change your password and change it on any other service using the same login details (email and password). We’ve sent you an email with further instructions on how to protect your account and data

– Always use a unique password with at least 8 characters, using a mix of upper-case and lower-case letters, numbers and symbols.

– Be careful of any unexpected communication that asks for your personal data or directs you to a website asking for your personal data

– Avoid clicking links or downloading attachments from suspicious email

– If you registered an account before August 5th, 2017, you may have received an email from Coinmama.  Any official email will not include any attachments or ask you for any personal data.

6. How do I reset my CoinMama password?

Step 1: Go to Coinmama’s Recover Password page and enter your email address.

Step 2: Click the confirmation link in the email they send you.

Step 3: Create a unique password with 8 characters or more, using capital and lower-case letters, numbers and special characters.

Security Tip: Make sure you’re on the official page by double checking the URL’s security certificate.

Click on the lock icon next to the URL. You should see something like this:

check url certificate


That’s it from us. We’ll keep you posted on any new developments.

Stay safe, 

CoolWallet Team

Go to previous article

10 Things We Love About the CoolWallet S

Go to next article

TOKEN2049 Preview: CoolBitX in Hong Kong this week

You may also like...

CoolWallet Pro + Billfodl

認識 CoolWallet Billfodl 金屬助記詞板

April 15, 2022

雖然CoolWallet能幫你保管加密貨幣,以便於隨身攜帶,但其實備份資料並確保其安全性、和保護你在硬體錢包中的資產同等重要。 舉例來說,不小心弄丟了手機或是CoolWallet裝置時,你必須使用恢復種子(12~24個單字或數字組),才能在另一個CoolWallet或其他相容的軟體錢包上還原錢包。不過,如果記錄著種子密碼的紙錢包,因如泡水、著火等原因損壞了,麻煩就大了。 這時候就會需要金屬助記詞板了!金屬助記詞板在材質上堅不可摧,能安全保管你的種子密碼,再也不用擔心你的種子密碼遇上各種意外。而想到金屬助記詞板,不可不提的品牌就是Billfodl! 這次CoolWallet與Billfodl合作,為的就是協助用戶在冷錢包之上再更提升安全性。 CoolWallet Billfodl 是什麼? CoolWallet Billfodl是一款防火金屬製的助記詞板,能讓你的種子密碼免受各種環境因素的危害。 使用金屬製的字母與數字在Billfodl上紀錄你的種子密碼,並利用兩道安全鎖確保機密資訊安全無虞。 CoolWallet在創建錢包時提供使用者兩種型態的種子密碼備份方案:24個單字、或是245位數字。 不管你選用的是數字或單字的形式,你都可以在CoolWallet Billfodl上記下種子密碼,特製款的金屬註記詞板能記錄你完整的五位數字種子密碼或是每個單字的前五個字母。 而CoolWallet的種子備份採用BIP39單字清單,因此你只需要輸入每個種子單字的前4個字母,就可以透過清單辨識出該特定單字。 跟著以下步驟,就可以打開滑蓋並開始記錄你的種子: 如何使用 CoolWallet Billfodl 小心拆開所有包裝,並將其放置在如書桌、餐桌等乾淨的工作空間。 用滑動的方式把Billfodl打開,將具有雷射雕刻品牌標誌以及數字1~12凹槽的那一面朝上。 […]

© 2022 - CoolWallet - All Rights Reserved
Website by Innovext