Developers of Trezor hardware wallets have reported a security incident involving a third-party support provider, leading to a data leak affecting approximately 66,000 customers.
?Security Alert ?
On January 17, 2024, the third-party support ticketing portal we use encountered unauthorized access.
Potentially impacted data are limited to user emails and names/nicknames that contacted our customer support team.
We want to assure you that this does not… pic.twitter.com/hnxBYBlvlO
— Trezor (@Trezor) January 20, 2024
The affected users interacted with the service since December 2021. The attackers gained access to the names/nicknames and email addresses of those who contacted support.
The Trezor team has sent warning emails to all affected users about potential phishing attempts.
According to the statement, since the attack on January 17, no “significant activity” by hackers has been observed. However, at least 41 users received messages requesting confidential information related to their wallet’s seed phrase.
Developers emphasized that Trezor representatives “will never ask you to do this.”
They stated that no user assets were compromised as a result of the incident.
Back in October 2023, Trezor wallet users faced a phishing campaign.