- Trezor has warned its wallet users of scam emails that appear legitimate
- Trezor said malicious actors gained access to its contact form
- The wallet maker asked users not to share their wallet details, like seed phrases
Crypto hardware wallet manufacturer Trezor has cautioned its wallet users about scammers sending legitimate-looking emails. Trezor revealed that malicious actors accessed its contact form and are using it to send emails aimed at stealing crypto. The wallet maker stated that it will never ask users for their wallet details and has advised users not to share their wallet backup, emphasizing that it must always stay private and offline.
Scammers Triggered Auto Replies
In an X post, Trezor said that the scammers contacted its support desk on behalf of affected addresses, something that triggered auto replies mimicking Trezor support messages. Trezor clarified that the issue had been resolved and its contact form is safe and secure. It also noted that the problem wasnt an email breach.
The wallet manufacturer disclosed that its looking for ways to prevent a similar incident in the future, adding that security is a continuous process. It also shared a blog post containing ways to identify phishing scams.
Part of the solutions outlined in the post include being wary of threatening language, suspicious email addresses, unsolicited messages, links, spelling mistakes, links, and email attachments. It advised crypto users to bookmark legitimate sites.
Scammers Using AI To Boost Credibility
According to Trezor, AI is making it harder to identify scams. It noted that threat actors are using AI to produce advanced text, video, and voice that closely mimics a human, allowing them to impersonate support agents.
Trezors warning comes shortly after scammers put a malicious pop-up notification on crypto price aggregator platform CoinMarketCap and crypto news site Cointelegraph. The pop-up asked the sites visitors to verify their crypto wallets, an act that would lead to a loss of funds.
It also comes two months after scammers mailed fraudulent letters to Ledger hardware wallet users. The letters requested their recipients to provide their wallet recovery phrases through a QR code, citing critical security update.
With threat actors compromising Trezors contact page, its possible theyll continue inventing new ways to nab victims.
