Trezor users suffered a wave of email phishing attacks

In recent days, hardware wallet provider Trezor has faced a series of phishing attacks targeting its users. Some users have received malicious emails impersonating Trezor, threatening that they will lose money if they do not upgrade their “network” and provide sensitive personal information. However, Trezor quickly detected and stopped these attacks, protecting user funds and warning the community about potential risks.

According to an announcement from Trezor, this attack originated from bad guys taking advantage of a third-party email service provider that Trezor is using. This allowed them to send a large number of fake emails to users in a short period of time. However, Trezor claims that no users have lost money due to these email phishing attempts. Trezor said it was successful in “disabling the malicious link” and that users' funds remained safe as long as they did not expose their wallet recovery keyphrase. For those who leaked their personal wallet recovery key phrase, Trezor recommends that they transfer funds to a new wallet immediately to ensure the safety of their assets.

However, not only stopping at stopping the phishing attack, Trezor also conducted an investigation to determine the cause and who was responsible. The results of this investigation have shown that an individual illegally accessed the newsletter subscriber email address database and used a third-party email service to send malicious emails. .
This has raised many concerns about protecting personal information and safety for users online. Another point worth noting is that this attack may be related to a recent security breach of Trezor's support portal, which exposed the contact information of nearly 66,000 users in January. Trezor has promptly restrict access for all unauthorized actors and communicate with all affected users to warn of the potential risk. Digital assets attorney Joe Carlasare has revealed that he received the phishing email on January 24, describing it as a “sophisticated scam.”
This shows that the risk of phishing attacks remains a serious problem and requires special attention from the user community and service providers. To prevent similar phishing attacks in the future, Trezor has warned users about a number of tactics scammers may use, including spoofing the Trezor website to steal personal information. and user money. They recommend users to only trust official announcements from Trezor and not share their personal information or wallet recovery phrase with anyone else. However, it's not just phishing attacks via email, Trezor has also discovered that a fake hardware wallet impersonating Trezor has hit the market. Cyber security company Kaspersky has also discovered that scammers would then attempt to steal funds via a repurposed microcontroller, allowing them to take control of users' private keys.

This makes protecting personal information and assets extremely important in today's digital age. In the context of phishing attacks becoming increasingly sophisticated and complex, protecting users' personal information and assets becomes extremely important. Trezor has committed to continue its efforts to protect its users from phishing attacks and provide them with the most secure and reliable solutions. However, the most important thing is still proactiveness and vigilance on the part of users, because only when we clearly understand potential risks and know how to prevent them can we be safe in cyberspace. Nowadays.