Trezor team reports data breach affecting customers’ personal data

The Trezor hardware-wallet team said that customers’ personal data were leaked on the MailChimp platform, through which the company conducts its marketing mailings. The attackers used user information in a phishing attack.

We will not be communicating by newsletter until the situation is resolved.
Do not open any emails appearing to come from Trezor until further notice. Please ensure you are using anonymous email addresses for bitcoin-related activity. 2/

— Trezor (@Trezor) April 3, 2022

“MailChimp confirmed that their service was hacked by an insider targeting cryptocurrency companies. We managed to disable the phishing domain. We are trying to determine how many email addresses were affected,” the statement said.

Trezor paused marketing mailings until the situation is resolved. Users were advised not to open emails purportedly sent on behalf of the company.

Which exact data were compromised is unknown. The phishing campaign was carried out from an external domain trezor.us (the official domain is trezor.io). Users were asked to download the “latest” version of the Trezor Suit application, intended to manage the wallet.

Wow, @Trezor, this is the best phishing attempt I have seen in the last few years. I am really lucky I don’t have Trezor, because if I had, I would probably actually download that update. pic.twitter.com/DaBN2Oix11

— Tomáš Kafka (@keff85) April 2, 2022

Earlier criminals uploaded a fake Trezor app to the App Store. Users had at least $1.6 million in cryptocurrencies stolen.

Earlier in March, the crypto-lending platform BlockFi reported a data breach, hosted in CRM HubSpot.