Trezor, a provider of cryptocurrency hardware wallets, is currently investigating a recent phishing campaign after receiving reports from users who have been targeted with phishing emails. The investigation was prompted by an anonymous blockchain investigator known as ZachXBT, who alerted users to the phishing attack through his Telegram channel on October 26th.
ZachXBT referred to a tweet from the account JHDN, which suggested that Trezor may have been breached after receiving phishing emails on the email account used specifically for purchasing the wallet. The phishing emails, similar to previous attacks targeting Trezor, offered users a “latest firmware update” for their Trezor devices, claiming that it would fix a software issue. However, the email was sent from the address firstname.lastname@example.org, which the poster deemed suspicious.
Drawing attention to the potential breach, ZachXBT warned users about the phishing email and raised concerns that it may indicate a data breach at Trezor or Evri, the UK delivery company that handles shipping for Trezor devices. Two individuals on Reddit also complained about receiving the same phishing email on the same day.
According to Josef Tetek, Trezor’s brand ambassador, the company is aware of the ongoing phishing campaign and is actively investigating the matter. Tetek emphasized that Trezor takes measures to combat such attacks, including reporting fake websites and contacting domain registrars. The company also educates and warns its customers about the risks associated with phishing attacks.
Trezor has published articles to assist users in dealing with phishing attacks. These articles caution users about fake websites that may redirect them to download a counterfeit version of the Trezor Suite app. Once installed, the app prompts users to connect their wallet and enter their recovery seed, compromising their funds as they are immediately transferred to the attacker’s wallet. Tetek reaffirmed that Trezor never asks for a user’s recovery seed, PIN, or passphrase and stressed the importance of only following the instructions displayed on a connected Trezor hardware wallet.
Unfortunately, cryptocurrency investors continue to fall victim to phishing attacks despite efforts to combat them. In September, a significant crypto investor reportedly lost $24 million in a phishing campaign. Cybersecurity reports indicate that the number of cryptocurrency phishing attacks increased by 40% in 2022.
In conclusion, Trezor is currently investigating a phishing campaign targeting its users, prompted by reports of phishing emails. The company is taking measures to address the issue and advises users to be cautious of such attempts. Phishing attacks remain a significant threat in the cryptocurrency industry, and investors must remain vigilant to protect their funds.