Trezor Confirms Unauthorized Use of Email Provider Led to Malicious Emails

Crypto hack Hardware wallet
Last updated:
Author
Author
Ruholamin Haqshanas
About Author

Ruholamin Haqshanas is a contributing crypto writer for CryptoNews. He is a crypto and finance journalist with over four years of experience. Ruholamin has been featured in several high-profile crypto...

Last updated:
Why Trust Cryptonews
Cryptonews has covered the cryptocurrency industry topics since 2017, aiming to provide informative insights to our readers. Our journalists and analysts have extensive experience in market analysis and blockchain technologies. We strive to maintain high editorial standards, focusing on factual accuracy and balanced reporting across all areas - from cryptocurrencies and blockchain projects to industry events, products, and technological developments. Our ongoing presence in the industry reflects our commitment to delivering relevant information in the evolving world of digital assets. Read more about Cryptonews

Hardware wallet provider Trezor has confirmed that the unauthorized use of its third-party email provider led to a spate of malicious emails sent to users over the past 12 hours.

In a statement released on January 24, Trezor disclosed that it had detected an unauthorized email impersonating the company, which was sent from a third-party email provider they utilize.

The malicious email, originating from the address “[email protected],” instructed users to upgrade their “network” or risk losing their funds.

It included a link that directed recipients to a webpage where they were prompted to enter their seed phrase.

Trezor has not confirmed any cases of users losing funds as a result of this phishing attempt, and there have been no reports suggesting that Trezor users fell victim to the scam.

Trezor Says it Has Deactivated the Malicious Link

Trezor assured its users that it had successfully deactivated the malicious link and emphasized that user funds remained safe as long as the recovery seed was not entered.

“We swiftly managed to deactivate the malicious link within the email text immediately and limited the reach of the threat!”

However, for those who did enter their recovery seed, Trezor asked them to transfer their funds to a new wallet immediately.

Trezor’s ongoing investigation indicates that an unauthorized individual gained access to its database of email addresses for newsletter subscribers and utilized a third-party email service to send the malicious emails.

Notably, MailerLite, an email marketing software firm, recently reported a cybersecurity incident on January 23, which resulted in a series of phishing emails exploiting branded domains, including those owned by Cointelegraph, WalletConnect, and Token Terminal.

Whether Trezor utilizes the same email domain provider remains unclear.

Digital asset lawyer Joe Carlasare shared his personal experience of receiving the phishing email in a post, describing it as a “sophisticated scam.”

Recent Hack Might be Linked to Breach of Support Portal

Some speculate that this recent attack may be linked to a security breach of Trezor’s support portal in which the contact information of approximately 66,000 users was exposed on January 17.

Despite the breach, the company emphasized that no recovery seed phrases were disclosed as a result of the incident.

At the time, the hardware wallet provider also said it has restricted access to unauthorized actors and has been in the process of contacting the affected users.

It is worth noting that this is not the first time Trezor has faced attempts to compromise user funds.

While being a reputable name in the cryptocurrency hardware wallet industry, Trezor has faced its fair share of security challenges over the years.

In February of the previous year, Trezor warned users about a phishing attack that aimed to steal investor funds by tricking them into entering their recovery phrase on a fake Trezor website.

Additionally, in May, cybersecurity firm Kaspersky reported the emergence of a counterfeit hardware wallet posing as Trezor.

This fraudulent device utilized a replaced microcontroller to gain control of a user’s private keys, enabling the scammers to steal funds.

More Articles

Price Analysis
$TRUMP Pumping Over 20% This Week: Presidential Memecoin Back for Good?
Arslan Butt
Arslan Butt
2025-02-15 15:26:50
Price Analysis
Study Predicts Bitcoin Surge to $1M by Early 2027: Is That Possible?
Arslan Butt
Arslan Butt
2025-02-15 14:45:43
Crypto News in numbers
editors
Authors List + 66 More
2M+
Active Monthly Users Around the World
250+
Guides and Reviews Articles
8
Years on the Market
70
International Team Authors