Trezor has launched an investigation into a possible security breach after receiving complaints from users who appear to have been victims of phishing attacks.
Have Trezor users been victims of a phishing attack?
Numerous users on Twitter have sounded the alarm about mysterious emails from Trezor. This is said to be a phishing attack aimed at Trezor users via their registered email addresses.
Cryptocurrency hardware wallet provider Trezor has begun investigating a possible data breach. Users' personal and financial information is or was at risk.
What's behind the attack?
Today, several community users have warned about an email phishing campaign specifically targeting Trezor users, sending them fake emails:
Act accordingly.
— Trezor (@Trezor) April 2, 2022Multibank ReviewT&Cs apply, 18+eToro Review74% of retail investor accounts lose moneyCapital.com Review76% of retail CFD accounts lose money
In an attack on cloud-based cryptocurrency storage provider Trezor, several users in the United States were targeted by an impersonator. Recipients were sent emails along with a download link from the trezor.us domain, which is different from the official Trezor domain trezor.io:
We are investigating a potential data breach of an opt-in newsletter hosted on MailChimp.
— Trezor (@Trezor) April 3, 2022
A scam email warning of a data breach is circulating. Do not open any email originating from noreply@trezor.us, it is a phishing domain.
Trezor also reported that it discovered a malware campaign that compromised around 420 of its users' emails. It later emerged that the compromised addresses belonged to a list of people who subscribed to the company's newsletter, which is hosted at a popular email marketing service provider called Mailchimp:
Wow, @Trezor, this is the best phishing attempt I have seen in the last few years. I am really lucky I don't have Trezor, because if I had, I would probably actually download that update. pic.twitter.com/DaBN2Oix11
— Tomáš Kafka (@keff85) April 2, 2022
Earlier today, Trezor announced the initial results of their research:
MailChimp has confirmed that their service has been compromised by an insider targeting crypto companies.
While Trezor is conducting a thorough investigation to verify the attacker's identity, the company has urged its customers not to open links from external sources.
Not only Trezor victims of phishing attacks
On March 19, New Jersey-based crypto financial institution BlockFi clarified that there had been a phishing attack to warn investors.
Regarding recent third-party data incident: pic.twitter.com/50z7IrQ1za
— BlockFi (@BlockFi) March 19, 2022
As BlockFi reported, there was a data breach. This breach reportedly compromised the databases of their former marketing software provider, Hubspot:
Hubspot has confirmed that an unauthorized third party has gained access to certain BlockFi customer data stored on the Hubspot platform.
According to BlockFi, the breach was limited to the Hubspot email marketing application. Users' personal information was never stored on Hubspot, according to a report published by BlockFi.
Think we missed something? Let us know in the comment section below.