Cryptocurrency users are under attack, here we will tell you how to prevent the loss of funds
Newsletter is coming, customers of leading user coin maker say
Trez warned in Sunday’s mid-morning that an ongoing investigation suggests the emails should have been posted this way.
The company explained that its email automation and marketing management software, Mailchimp, was compromised by insiders targeting cryptocurrency firm Trezor, which removed phishing domains and advised users to ensure “use an anonymous email address” for Bitcoin-related transactions activity.”
According to a Monday report from TechCrunch, Mailchimp confirmed the data breach after hackers compromised an internal tool to access customer accounts, suggesting it wasn’t just Trezor and its users who were affected by the breach. The company’s chief information security officer, Siobhan Smyth, said the company only became aware of the flaws on March 26 after it discovered malicious actors who may have used tools intended for the company’s internal use to gain access to customer accounts.
The attackers gained access to the system through social engineering, meaning they were able to trick company stakeholders into accessing Mailchimp’s internal tools, rather than breaking the software. The company said it “acted swiftly to address the issue by terminating access to compromised employee accounts and taking steps to prevent other employees from being affected.”
Still, the hackers were able to view some 300 Mailchimp accounts and export audience data from 102 of them, targeting customers in the cryptocurrency and financial sectors. Additionally, the attackers gained access to the application programming interface (API) keys of an unspecified number of users, allowing them to send emails that appear to be sent by the client.
What users should expect
Fortunately, these API keys are now disabled, but cryptocurrency users should expect to receive phishing emails containing malware or attempting to mine credentials such as emails, passwords, or even passwords containing cryptocurrencies like Bitcoin The wallet’s private key or recovery word. bitcoin
.These emails may be sent from addresses owned by companies that the user trusts via Mailchimp’s API.
Furthermore, since such APIs have been disabled, hackers cannot continue to use official email addresses of infected financial and crypto companies. Still, the attackers have the email addresses of hundreds of users associated with these companies, so expect the phishing emails to come from different email addresses, likely often impersonating trusted companies that users are familiar with.