Trezor Newsletter Compromised, Subscribers Receive Phishing Attacks

By Meghan Lim

In a Tweet no more than a day ago, Trezor confirmed that MailChimp, one of the email services for their newsletter, had its systems compromised by “an insider targeting crypto companies.” To ensure the safety of its users and their assets, the company firmly advised disregarding any email from Trezor until further notice.

MailChimp have confirmed that their service has been compromised by an insider targeting crypto companies.

We have managed to take the phishing domain offline. We are trying to determine how many email addresses have been affected. 1/

— Trezor (@Trezor) April 3, 2022

According to the circulating Tweets about the incident, the emails contained a brief message from Trezor Suite asking its recipients to “download the newer version of the app.”; the link following the reminder, though seemingly credible at first glance, is actually a phishing link attempting to catch innocent clickers.

Hey @Trezor, I just got an email from you or someone spoofing you that Trezor Suite might be compromised due to a hack. The email contains a link to download a newer version. Is that a legit email or a phishing email? Did you guys get hacked and find out about it today?

— Undisclosed ₿ ⚡💜 (@BitcoinUndisc) April 3, 2022

In quick response, domains trezor(dot)us and suite(dot)xn--trzor-o51b(dot)com have been taken down by the crypto hardware company to restrain the amount of attacks.

While an update is yet to be heard from Trezor, the news has already spread throughout most of the community, and many enthusiasts, big or small, are aiding their fellow crypto-goers in handling the situation.

This is probably the most Sophisticated email scam I have ever seen. Please do your due diligence before clicking on links. If you look at the email it ends in .US when they’re emails come from .IO! @Trezor pic.twitter.com/aS1PPtjdJK

— ESANCH (@_elijahsan) April 3, 2022

Do not open any emails that appear to be coming from Trezor! You can use your Trezors without ever needing to open any of their emails. https://t.co/JgaNWlWmUV

— The Jiho.eth (@Jihoz_Axie) April 3, 2022

What is Trezor?

Trezor is a hardware wallet that provides advanced security for handling over a thousand cryptocurrency coins and private keys. The company is a part of SatoshiLabs and was launched in 2013 with headquarters in Praha, Czech Republic. In comparison to software wallets like Metamask or Ronin, hardware wallets like Trezor are favored for their ability to store assets without using online servers, deeming it safer from hacking risks.

This article is published on BitPinas: Trezor Newsletter Compromised, Subscribers and Users Receive Phishing Attacks

Disclaimer: BitPinas articles and its external content are not financial advice. The team serves to deliver independent, unbiased news to provide information for Philippine-crypto and beyond.