2 years ago
Numerous users connected Twitter alarmed Trezor of an ongoing email phishing run specifically targeting Trezor users via their registered email addresses.
66 Total views
2 Total shares
Cryptocurrency hardware wallet supplier Trezor has begun investigating a imaginable information breach that whitethorn person compromised users’ email addresses and different idiosyncratic information.
Earlier today, connected Apr. 3, respective users from the Crypto Twitter assemblage warned astir an ongoing email phishing run specifically targeting Trezor users via their registered email addresses.
Hey trezor, are you alert of a phishing run going on? I conscionable received this email with my existent email connected it. It looked precise legit. pic.twitter.com/GF0Od6llr2
— josearkaos ⚡️ (@josearkanos) April 3, 2022In the ongoing attack, respective Trezor users person been contacted by unauthorized actors posing arsenic the institution — with the eventual volition to bargain funds by misleading unwary investors. As portion of the attack, users received an email astir downloading an app from the ‘trezor.us’ domain, which is antithetic from the authoritative Trezor domain name, ‘trezor.io.’
We are investigating a imaginable information breach of an opt-in newsletter hosted connected MailChimp.
A scam email informing of a information breach is circulating. Do not unfastened immoderate email originating from [email protected], it is simply a phishing domain.
Trezor initially suspected that the compromised email addresses beryllium to a database of users who opted-in for newsletters, which was hosted connected an American email selling work supplier Mailchimp.
Wow, @Trezor, this is the champion phishing effort I person seen successful the past fewer years. I americium truly fortunate I don't person Trezor, due to the fact that if I had, I would astir apt really download that update. pic.twitter.com/DaBN2Oix11
— Tomáš Kafka (@keff85) April 2, 2022While Trezor attempts to place the basal origin of the concern with an authoritative investigation, users are advised not to click connected links coming from unofficial sources until further notice.
Related: BlockFi confirms unauthorized entree to lawsuit information hosted connected Hubspot
On Mar. 19, New Jersey-based crypto fiscal instauration BlockFi proactively confirmed a information breach to pass investors astir the anticipation of phishing attacks.
Regarding caller third-party information incident: pic.twitter.com/50z7IrQ1za
— BlockFi (@BlockFi) March 19, 2022As Cointelegraph reported, hackers gained entree to BlockFi’s lawsuit information that was hosted connected Hubspot, a lawsuit narration absorption platform. According to BlockFi:
“Hubspot has confirmed that an unauthorized third-party gained entree to definite BlockFi lawsuit information housed connected their platform.”While specifics connected the breached information are yet to beryllium identified and revealed, BlockFi reassured users by highlighting that idiosyncratic information — including passwords, government-issued IDs and societal information numbers — “were ne'er stored connected Hubspot.”
English (US) 