{"id":22928,"date":"2022-04-03T22:11:11","date_gmt":"2022-04-03T21:11:11","guid":{"rendered":"https:\/\/coinscreed.com\/staging\/?p=22928"},"modified":"2022-04-27T03:47:07","modified_gmt":"2022-04-27T07:47:07","slug":"trezor-investigates-potential-data-breach","status":"publish","type":"post","link":"https:\/\/coinscreed.com\/staging\/trezor-investigates-potential-data-breach\/","title":{"rendered":"Trezor wallet investigates potential data breach through phishing attacks"},"content":{"rendered":"\n
Trezor,<\/a> a cryptocurrency hardware wallet company, has initiated an investigation into a probable data breach of an ongoing email phishing campaign which has been reported by various users on Twitter.<\/h5>\n\n\n\n
\"Trezor
Trezor wallet investigates potential data breach through phishing attacks<\/figcaption><\/figure><\/div>\n\n\n\n

On April 3, numerous members of the \r\n \r\n \r\n \r\n <\/g>\r\n \r\n \r\n \r\n <\/clipPath>\r\n <\/defs><\/svg><\/span><\/a>Crypto Twitter community<\/use><\/svg><\/span><\/a> warned about an ongoing email phishing campaign targeting Trezor users via their registered email accounts.<\/p>\n\n\n\n

\n

Act accordingly.<\/p>— Trezor (@Trezor) April 2, 2022<\/use><\/svg><\/span><\/a><\/blockquote>

Several Trezor users have been approached by unauthorized actors posing as the company in the ongoing campaign, with the ultimate goal of stealing cash by deceiving naive investors.<\/p>\n\n\n\n

Users were sent an email about installing an app from the ‘trezor.us' domain, which is different from the official Trezor domain name, ‘trezor.io,' as part of the attack.<\/p>\n\n\n\n

\n

We are investigating a potential data breach of an opt-in newsletter hosted on MailChimp.

A scam email warning of a data breach is circulating. Do not open any email originating from noreply@trezor.us, it is a phishing domain.<\/p>— Trezor (@Trezor) April 3, 2022<\/use><\/svg><\/span><\/a><\/blockquote>

Trezor first assumed the hacked email addresses belonged to a list of users who had opted-in for newsletters hosted by Mailchimp, an American email marketing service provider.<\/p>\n\n\n\n

\n

Wow, @Trezor<\/use><\/svg><\/span><\/a>, this is the best phishing attempt I have seen in the last few years. I am really lucky I don't have Trezor, because if I had, I would probably actually download that update. pic.twitter.com\/DaBN2Oix11<\/use><\/svg><\/span><\/a><\/p>— Tom\u00e1\u0161 Kafka (@tomaskafka) April 2, 2022<\/use><\/svg><\/span><\/a><\/blockquote>

Trezor announced the following after additional investigation:<\/p>\n\n\n\n

“MailChimp have confirmed that their service has been compromised by an insider targeting crypto companies.”<\/p><\/blockquote>\n\n\n\n

While Trezor conducts an official investigation<\/a> to determine the total number of stolen email addresses, users should refrain from clicking on links from unauthorized sources until further notice.<\/p>\n\n\n\n

BlockFi also warns about phishing attacks<\/h2>\n\n\n\n

BlockFi, a crypto-financial institution situated in New Jersey<\/a>, proactively verified a data breach<\/use><\/svg><\/span><\/a> on March 19 to alert investors about the risk of phishing attempts.<\/p>\n\n\n\n

\n

Regarding recent third-party data incident: pic.twitter.com\/50z7IrQ1za<\/use><\/svg><\/span><\/a><\/p>— BlockFi (@BlockFi) March 19, 2022<\/use><\/svg><\/span><\/a><\/blockquote>

Hackers acquired access to BlockFi's client data held on Hubspot, a client relationship management platform, according to reports. BlockFi claims that:<\/p>\n\n\n\n

\u201cHubspot has confirmed that an unauthorized third-party gained access to certain BlockFi <\/a>client data housed on their platform.\u201d<\/p><\/blockquote>\n\n\n\n

While the specifics of the data breach have yet to be uncovered, BlockFi reassured consumers by stating that personal information such as passwords, government-issued IDs, and social security numbers “were never saved on Hubspot.”<\/p>\n","protected":false},"excerpt":{"rendered":"

Trezor, a cryptocurrency hardware wallet company, has initiated an investigation into a probable data breach of an ongoing email phishing campaign which has been reported by various users on Twitter. On April 3, numerous members of the Crypto Twitter community warned about an ongoing email phishing campaign targeting Trezor users via their registered email accounts. […]<\/p>\n","protected":false},"author":12,"featured_media":22929,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[21],"tags":[8624,8623,8622,482],"class_list":["post-22928","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-data-breach","tag-phishing-attacks","tag-trezor-2","tag-twitter"],"jetpack_featured_media_url":"https:\/\/coinscreed.com\/staging\/wp-content\/uploads\/2022\/04\/image-3.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/22928","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/users\/12"}],"replies":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/comments?post=22928"}],"version-history":[{"count":0,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/posts\/22928\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media\/22929"}],"wp:attachment":[{"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/media?parent=22928"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/categories?post=22928"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/coinscreed.com\/staging\/wp-json\/wp\/v2\/tags?post=22928"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}