Crypto hardware wallet Trezor issues warning about newsletter phishing attack

Trezor, a crypto hardware wallet company, has confirmed circulating reports that some of its users were the target of a phishing attack this weekend.

In a Sunday morning tweet, Trezor said it was investigating "a potential data breach of an opt-in newsletter hosted on MailChimp" and warned users to avoid opening emails from "[email protected]".

"MailChimp [has] confirmed that their service has been compromised by an insider targeting crypto companies," Trezor said in a subsequent post. "We have managed to take the phishing domain offline. We are trying to determine how many email addresses have been affected."

"We will not be communicating by newsletter until the situation is resolved. Do not open any emails appearing to come from Trezor until further notice. Please ensure you are using anonymous email addresses for bitcoin-related activity," the firm went on to say. 

Trezor users began to circulate warnings and screenshots of the phishing attempt on Saturday. Per the messages, the phishing attack was an attempt to induce users to download malicious code under the guise of Trezor's Suite desktop app by alleging a fake security breach at the company.


Keep up with the latest news, trends, charts and views on crypto and DeFi with a new biweekly newsletter from The Block's Frank Chaparro

By signing-up you agree to our Terms of Service and Privacy Policy
By signing-up you agree to our Terms of Service and Privacy Policy

A comment request sent to MailChimp's PR office was not returned by press time.