Trezor, a leading provider of cryptocurrency hardware wallets, is currently investigating a recent phishing campaign reported by users. The campaign came to light after anonymous blockchain investigator ZachXBT shared the news on his Telegram channel on October 26. The alert was triggered by a phishing attack targeting Trezor customers. ZachXBT referred to a Twitter post by the account JHDN, which claimed to have received a phishing email related to Trezor, raising concerns that the platform may have been compromised.
The phishing email, similar to previous Trezor-related attacks, entices users to download the "latest firmware update" for their Trezor device under the guise of fixing software issues. The email in question purportedly came from the address amministrazione@sideagroup.com. ZachXBT urged caution and stated that the affected user had recently purchased a Trezor, suggesting potential data breach issues with the hardware or the shipping company, Evri, in the UK.
In response to the situation, Trezor's brand ambassador, Josef Tetek, acknowledged the ongoing phishing campaign and confirmed that the company is actively investigating. Trezor has been working diligently to report fake websites, contact domain registrars, and educate and alert customers to known risks, as stated by Tetek. The company has published multiple articles designed to assist users in dealing with phishing attacks. One of these articles highlighted the common tactic used by phishers, which often involves redirecting users to download an application like Trezor Suite and then requesting the entry of a seed phrase. This information is subsequently compromised, allowing the attacker to gain control of the victim's funds.
Tetek emphasized that Trezor never requests users' recovery seeds, PINs, or passwords, and urged users to refrain from entering a recovery seed directly into any website, mobile application, or computer. Instead, the only secure way to use a recovery seed is by following the instructions displayed on the connected Trezor hardware wallet. Despite efforts to combat such scams, cryptocurrency investors continue to be targeted by various phishing attacks. A prominent example in September involved a significant cryptocurrency investor falling victim to a massive phishing campaign, resulting in the loss of $24 million in crypto assets. Reports from cybersecurity sources indicate a 40% increase in cryptocurrency phishing attacks in 2022.
