Hardware wallet provider Trezor has issued an urgent alert, notifying its users about a security vulnerability that allowed attackers to send sophisticated phishing emails masquerading as legitimate Trezor support responses.
In an “Important Update” Trezor confirmed that “attackers abused our contact form to send scam emails appearing as legitimate Trezor support replies.” These fraudulent emails are a direct attempt to trick users, despite their convincing appearance.
Trezor reiterated a paramount security rule for all users: “NEVER share your wallet backup — it must always stay private and offline. Trezor will never ask for your wallet backup.” This fundamental guideline is crucial for safeguarding digital assets.
The company has confirmed that “The issue has been contained,” signifying that the vulnerability in their contact form has been resolved. Nevertheless, Trezor stressed the ongoing need for caution: “Security is a continuous process. Stay vigilant.”
This incident highlights the pervasive threat of phishing and social engineering in the crypto ecosystem. Trezor users and the broader cryptocurrency community are advised to remain highly cautious of any suspicious communications and to always prioritize the security of their private keys and recovery phrases.
Kosta Gushterov
Reporter at Coindoo
Kosta has been a part of the team since 2021 and has solidified his position with a thirst for knowledge, incredible dedication to his work and a “detective-like” mindset. He not only covers a wide range of trending topics, he also creates reviews, PR articles and educational content. His work has also been referenced by other news outlets.
Source: https://coindoo.com/crypto-wallet-trezor-warns-users-of-scam-emails-posing-as-support/