Wir untersuchen einen möglichen Datenschutzverstoß bei einem Opt-in-Newsletter, der auf MailChimp gehostet wird.
Home › Foren › Trezor Wallet › Wir untersuchen einen möglichen Datenschutzverstoß bei einem Opt-in-Newsletter, der auf MailChimp gehostet wird.
- Dieses Thema hat 21 Antworten und 2 Teilnehmer, und wurde zuletzt aktualisiert vor 1 Jahr, 10 Monaten von mkin11.
-
AutorBeiträge
-
-
22. Mai 2022 um 01:34 Uhr #820331root_s2yse8vtAdministrator::
MailChimp hat bestätigt, dass ihr Dienst von einem Insider kompromittiert wurde, der es auf Kryptounternehmen abgesehen hat. Es ist uns gelungen, die Phishing-Domain offline zu nehmen. Wir versuchen zu ermitteln, wie viele E-Mail-Adressen betroffen sind.
Es kursiert eine betrügerische E-Mail, die vor einer Datenpanne warnt. Öffnen Sie keine E-Mails, die von folgenden Adressen stammen [noreply@trezor.us](mailto:noreply@trezor.us), es handelt sich um eine Phishing-Domäne.
Bis die Situation geklärt ist, werden wir nicht per Newsletter kommunizieren. Öffnen Sie bis auf Weiteres keine E-Mails, die von Trezor zu stammen scheinen. Bitte stellen Sie sicher, dass Sie anonyme E-Mail-Adressen für Bitcoin-bezogene Aktivitäten verwenden.
UPD: Status-Update über den laufenden Angriff: [https://blog.trezor.io/ongoing-phishing-attacks-on-trezor-users-edd840b17304](https://blog.trezor.io/ongoing-phishing-attacks-on-trezor-users-edd840b17304)
-
22. Mai 2022 um 01:35 Uhr #820332
-
22. Mai 2022 um 01:35 Uhr #820333lookingaroundblindGast::
Its malware.
This is a complete failure on Trezors mods and Reddit admins to control disinfo on their sub.
The issue was clearly reported almost 20 hours ago and each and every thread was massively downvoted to the point it would not show up on mobile app.
​
[https://www.reddit.com/r/TREZOR/comments/tv0axk/trezor_malware_phish_yup_its_bad_snake_keylogger/](https://www.reddit.com/r/TREZOR/comments/tv0axk/trezor_malware_phish_yup_its_bad_snake_keylogger/)
​
Its been posted countless times, all threads on all subs were downvoted to oblivion. 🙁
-
22. Mai 2022 um 01:35 Uhr #820334
-
22. Mai 2022 um 01:35 Uhr #820335BitcoinAccGast::
Please do also post this information in the relevant sticky thread over at r/Bitcoin:
WARNING TREZOR USERS: The email from noreply@trezor.us is FAKE. Do not click the link! from Bitcoin
-
22. Mai 2022 um 01:35 Uhr #820336anon13145088Gast::
related phishing addresses (AVOID!):
noreply@trezornews.io
noreply@satoshilabs.co
ţrezor.com -
22. Mai 2022 um 01:35 Uhr #820337
-
22. Mai 2022 um 01:35 Uhr #820338
-
22. Mai 2022 um 01:35 Uhr #820339PhotolunaticGast::
Trezor was bosting that they managed to ban those spamming domains but…
spammers managed to secure other domains to spam from
1. https://suite.trezoŕ dot com
2. noreply at satoshilabs.co
3. suite[.]xn--rezor-6db[.]com
4. suite.ţrezor[.]com
5. noreply@trezornews[.]io
6. ţrezor[.]com
7. sitoshilabs[.]coTREZOR you will not recover from this. Such an amateur level of security.
Shame on you. -
22. Mai 2022 um 01:35 Uhr #820340
-
22. Mai 2022 um 01:35 Uhr #820341pieceofmind199Gast::
Lots of questions emerging, now we’d like to know how is Trezor protecting its software distribution infrastructure: https://www.reddit.com/r/TREZOR/comments/tuxgdv/how_to_verify_trezor_suite_download_is_authentic/
-
22. Mai 2022 um 01:35 Uhr #820342brunogeronimoGast::
I wrote an article about my investigations on the case, in case someone is interested:
-
22. Mai 2022 um 01:35 Uhr #820343LovelyDayHereGast::
> MailChimp have confirmed that their service has been compromised by an insider targeting crypto companies.
Please post whatever information you can about this alleged MailChimp issue, as it seems very serious and perhaps others can avoid further problems if more aware of the further details, like any relevant MailChimp announcements / communications / info links.
-
22. Mai 2022 um 01:35 Uhr #820344
-
22. Mai 2022 um 01:35 Uhr #820345[deleted]Gast::
I got the fake email this morning, and it’s pretty convincing. Be careful. If you check the email, it comes from the **fake email address** [trezor.us](https://trezor.us). Delete the email, don’t click on the link and you should be safe.
However, my email address was in the email and I want to know why. I bought my Trezor directly from you and trusted you but I start to have doubts. Trezor? -
22. Mai 2022 um 01:35 Uhr #820346
-
22. Mai 2022 um 01:35 Uhr #820347
-
22. Mai 2022 um 01:35 Uhr #820348EfraimKGast::
“compromised by an insider targeting crypto companies.” Just goes to show why it’s safer NOT to provide personally identifying data to companies. When the stakes are high enough, even malicious internal actors are tempted to breach customer trust. Lesson I’ve learned: if I can’t do business without divulging personal info (mobile #, non-disposable email address…) I’ll just have to miss the opportunity. 🙁
-
22. Mai 2022 um 01:35 Uhr #820349Feisty_Win_5098Gast::
There is a high probability that the data of the customer who purchased the hardware and the email address of the registered newsletter overlap by 90 percent.Threads that post about such events are still **unable to upvote**. It was an **’excellent’** decision to host the data and the official response to this was quite **’quick’**.
Well done mate!
-
22. Mai 2022 um 01:35 Uhr #820350
-
22. Mai 2022 um 01:35 Uhr #820351
-
22. Mai 2022 um 01:35 Uhr #820352
-
-
AutorBeiträge
- Du musst angemeldet sein, um auf dieses Thema antworten zu können.