Trezor, a leading hardware wallet provider, has alerted its user base to a potential phishing threat after a security breach at a third-party support platform.
The hardware service provider disclosed that many customers face potential risks due to unauthorized system failure.
Trezor Details Security Breach
The contact details of 66,000 users who accessed Trezor Support since 2021 may have been compromised. The exposed data could include names, nicknames, and email addresses.
“This breach occurred at the level of that third-party service provider we are currently engaged with. We are amidst a thorough investigation into the scope of this incident, along with the third-party service provider, Trezor said.
In the aftermath of the breach, malevolent actors targeted 41 users via email, soliciting sensitive information regarding their recovery seeds. Trezor further identified a potential compromise for eight individuals who registered accounts on the platform hosted by the same third-party provider.
Beware of Phishing Campaigns
Trezor urged its users to remain aware of potential phishing scams that might emanate from the incident. Phishing allows bad actors to assume the guise of a trusted entity to extract sensitive information from unsuspecting individuals. These entities frequently deploy nefarious techniques to pilfer valuable data like login credentials and credit card details.
“Given the breach of contact details, there remains a heightened risk of phishing attacks aimed at obtaining the affected users’ recovery seed,” Trezor warned.
The gravity of this technique becomes alarmingly clear when considering the financial toll exacted by digital marauders. Last year, sophisticated phishing scams orchestrated by wallet drainers yielded a staggering haul of almost $300 million.
Meanwhile, Trezor said it has diligently reviewed the interactions and proactively contacted affected customers, successfully preventing the disclosure of any recovery seed phrases. The company emphasized that none of its users’ funds have been compromised and assured that devices remained secure.
This recent warning echoes a similar caution issued by Trezor in March 2023, highlighting an ongoing phishing scam. Although there was no security breach on Trezor’s end, scammers falsely asserted otherwise.
The post Trezor Users Under Alert Following Third-Party Security Breach appeared first on BeInCrypto.