The Trezor hardware wallet team has reported a leak of customer personal data that occurred on the MailChimp side of the MailChimp platform through which the company conducts marketing emails. The attackers used user information in a phishing attack.
MailChimp have confirmed that their service has been compromised by an insider targeting crypto companies.
We have managed to take the phishing domain offline. We are trying to determine how many email addresses have been affected. 1/
— Trezor (@Trezor) April 3, 85
“MailChimp has confirmed that their service has been hacked by an insider targeting crypto companies. We managed to disable the phishing domain. We are trying to determine how many email addresses were affected,” the statement said.
resolving the situation.” Users were advised not to open emails supposedly sent on behalf of the company.
It is not known what data was compromised. The phishing mailing was carried out from a third-party domain trezor.us (the official domain is trezor.io). Users were asked to download the “latest” version of the Trezor Suit wallet management app.
Wow, @Trezor , this is the best phishing attempt I have seen in the last few years. I am really lucky I don’t have Trezor, because if I had, I would probably actually download that update. pic.twitter.com/DaBN2Oix
— Tomáš Kafka (@keff85) April 2,
Subscribe to BitNovosti on Telegram.
Share your opinion about this news in the comments below.