Trezor, a cryptocurrency wallet provider, has started investigating a data breach that could have compromised users’ email addresses or other personal information.
Today, April 3, was a day earlier than usual. 3: Users from the Crypto Twitter Community warned of an ongoing email-phishing campaign targeting Trezor users using their registered email addresses.
Are you aware of a phishing scam? This email was sent to me with my real email. It seemed very legitimate. pic.twitter.com/GF0Od6llr2
— josearkaos (@josearkanos) April 3, 2022
Trezor users were contacted by unknown actors pretending to be the company in an ongoing attack. The ultimate goal was to steal funds and mislead investors. Users were emailed about downloading an application from the “trezor.us” domain. This domain is not the official Trezor domain, “trezor.io”.
We are investigating possible data breaches in an opt-in newsletter hosted by MailChimp. Scam email warning of data breach circulates. It is a scam email that claims to be from [email protected]
— Trezor (@Trezor) April 3, 2022
Trezor suspected at first that the compromised email addresses belonged to a list users who had opted in for Mailchimp’s newsletters.
Wow @Trezor! This is probably the most successful phishing attempt that I’ve seen in the past few years. Trezor is not my friend, so I’m really fortunate that I don’t have it. I would most likely download the update. pic.twitter.com/DaBN2Oix11
— Tomas Kafka (@keff85) April 2, 2022
Trezor made the following announcements after further investigation:
“MailChimp has confirmed that an insider targeted crypto companies and compromised their service.”
Trezor is currently investigating to determine the total number stolen email addresses. Users are advised to not click on links from unofficial sources until further notice.
Similar: BlockFi confirms unauthorised access to Hubspot client data
On March. 19: New Jersey-based crypto financial institution BlockFi confirmed a data breach in order to warn investors about possible phishing attacks.
Regarding recent third-party data incident: pic.twitter.com/50z7IrQ1za
— BlockFi (@BlockFi), March 19, 2022
Cointelegraph reported that hackers had gained access to BlockFi’s client data, which was stored on Hubspot (a client relationship management platform). According to BlockFi
“Hubspot confirmed that an unauthorized third-party had access to certain BlockFi client information stored on their platform.”
Although details about the breached data have yet to be revealed, BlockFi assured users that personal data, including passwords and government-issued IDs, “were not stored on Hubspot.”
Eileen Wilson –Technology and Energy
My Name is Eileen Wilson with more than 5 years of experience in the Stock market industry, I am energetic about Technology news, started my career as an author then, later climbing my way up towards success into senior positions. I can consider myself as the backbone behind the success and growth of topmagazinewire.com with a dream to expand the reach out of the industry on a global scale. I am also a contributor and an editor of the Technology and Energy category. I experienced a critical analysis of companies and extracted the most noteworthy information for our vibrant investor network.