Coinbase Commerce Flagged for Mnemonic Phrase Risk

A new security concern has surfaced around Coinbase Commerce. Experts say a part of its system may put users at risk. The issue comes from the withdrawal page. According to reports, the page prompts users to enter their mnemonic phrase, also known as a seed phrase. This has set off severe alarms in the crypto space. Security firms and blockchain experts quickly reacted.

🚨JUST IN: COINBASE COMMERCE PAGE FLAGGED FOR SECURITY CONCERNS

Potential security risks have emerged on @Coinbase Commerce, warns security firm @SlowMist_Team.

The withdraw page reportedly asks users to enter plaintext mnemonic phrases.

The interface suggests copying phrases… pic.twitter.com/RuBSV193eK

— BSCN (@BSCNews) March 19, 2026

SlowMist, a well-known security company, warned users about this behavior. They said it could expose users to major risks. At the same time, blockchain investigator ZachXBT also shared concerns. He warned that attackers could take advantage of this setup.

Why Seed Phrases Should Never Be Shared?

A mnemonic phrase is the key to a crypto wallet. It gives full access to funds. Consequently, security experts always teach users one simple rule. Never share your seed phrase and never type it online. Usually, users store it offline. Some write it on paper. Others keep it in secure storage.

However, the Coinbase Commerce page appears to break this rule. It reportedly asks users to paste their phrase into a text box. Even more concerning, the page suggests copying it from Google Drive. This makes the risk even higher. If someone gets access to that phrase, they can take all the funds. There is no way to reverse it.

Experts Warn About Social Engineering Risks

Security experts say the bigger danger is not just the page itself. It is how attackers may use it. Hackers often rely on social engineering. They trick users into trusting fake links or messages. If users enter seed phrases online regularly, attackers fool them more easily. A fake page could look very real. ZachXBT pointed out this exact risk. He said attackers could copy the same flow to steal funds. Even if the official page is real, it still creates a dangerous habit. This is why experts are strongly warning users to stay careful.

Context Behind the Recovery Process

Some reports suggest this tool is part of a recovery process. It may help users move funds from older Coinbase Commerce wallets. These wallets were created in a way that spreads funds across many addresses. So, users may need to gather them in one place.

Also, Coinbase Commerce is expected to shut down by the end of March 2026. It will merge into a new service called Coinbase Business. Because of this, users may need to recover and move their assets soon. However, even in this case, the method is being questioned. Many experts say asking for seed phrases in plain text is not safe.

Users Urged to Stay Alert

For now, users are advised to stay cautious. They should never share their seed phrase with anyone. They should also avoid entering it on any website unless fully verified. Even then, experts say it is better to avoid such steps completely.

This situation highlights a bigger issue in crypto. Convenience should never come before security. As the industry grows, users must stay aware. One small mistake can lead to total loss of funds. So, the best rule still stands. If anyone asks for your seed phrase, walk away.