Hackers Breached MailChimp, Send Phishing Emails To Trezor Crypto Users

Share post:

Mailchimp, an email marketing platform, has confirmed a data breach in which hackers stole data from more than 100 of its customers.

This follows a warning from Trezor hardware cryptocurrency users who claim to have been the target of a sophisticated phishing email campaign.

According to Mailchimp CISO, Siobhan Smyth, the company discovered the breach on March 26 after noticing unauthorised access to a tool used by the company’s customer support and account administration teams.

Despite disabling the compromised employee accounts, the attackers were still able to view about 300 Mailchimp user accounts and quickly gain an audience from 102 of them.

The attackers used the stolen email lists to send a fake data breach notification to Trezor customers. The users were prompted to download a new version of the Trezor Suite desktop application.

Trezor customers were directed to a phishing site that hosted a fake version of the application and was designed to steal the seed phrase, which would allow attackers to take over a user’s crypto wallet.

Trezor users are advised to report new phishing attempts directly to security @ trezor.io. Mailchimp has also contacted and notified the owners of all compromised accounts.

For more information, read the original story in TheVerge.

Featured Tech Jobs


Related articles

Canada, U.S. sign international guidelines for safe AI development

Eighteen countries, including Canada, the U.S. and the U.K., today agreed on recommended guidelines to developers in their nations for the secure design, development, deployment, and operation of artificial intelligent systems. It’s the latest in a series of voluntary guardrails that nations are urging their public and private sectors to follow for overseeing AI in

Is OpenAI’s Q* Artificial General Intelligence?

OpenAI's latest model, Q* (pronounced Q Star), is raising eyebrows in the AI community as a potential milestone...

OpenAI’s Q* model: Was an AGI breakthrough the impetus for the management crisis?

There are reports that a new model from OpenAI's, Q* (pronounced Q Star), is capable of solving basic...

Cisco aids Ukraine in cyber defense with modified switches to counter Russian attacks

Cisco has proactively shipped modified switches to Ukrenergo, the state-owned electricity grid operator in Ukraine, to bolster its...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways