Ethereum Foundation alerts about phishing campaign after email list leaked – DiarioBitcoin

The attackers took advantage of a vulnerability and accessed one of the mailing lists managed by the Ethereum Foundation. The organization warns about phishing campaigns that are being spread through the account.

***

• Ethereum Foundation warns the community after leak of one of its mailing lists
• Attackers exploited a vulnerability present in one of the automated message providers
• They warn about false messages and campaigns, which are phishing attempts to attract potential victims.
• Tim Beiko invited the community to take precautions and indicated that they are trying to solve what happened

The Ethereum Foundation, entity responsible for providing technological and community support to the network of Ethereum, confirmed that the email list managed by the entity was filtered, so they warn the community about possible phishing campaigns in progress.

Leaked email list Ethereum Foundation

The information was confirmed by Tim Beiko, developer and one of the main figures behind the Ethereum Foundationwho shared a message through his X account warning about the fact and indicating that the entity had the problem SendPulse, messaging service provider for the organization, with whom they try to contact to address the problem

PSA: it seems like the mailing list provider the EF uses for “updates@ethereum.org” has been compromised. We are currently trying to reach @SendPulseCom to resolve the issue. Please don’t click any links sent from that email. Here’s a sample fake email that was received: pic.twitter.com/eRIANSPYyT

— timbeiko.eth (@TimBeiko) June 23, 2024

Beiko clarified that the list that was leaked was the one managed by “updates@ethereum.com”, and shared in his message an example of the fake emails that the attackers would be sending to potential victims, indicating that they avoid opening links and/or downloading files.

Reports claim that those responsible took advantage of a vulnerability present in the email automation service that manages the Ethereum Foundation, and with this they accessed the subscriber list.

For now, while the Ethereum Foundation is working on a solution, interested parties are invited to be careful with messages they may receive from the compromised account. They are also invited to be very careful with apparently lucrative proposals that come from strange emails, since attackers will most likely take advantage of the email list to try to reach victims through other campaigns.

Article by Angel Di Matteo / DailyBitcoin

Picture of Unsplash

WARNING: This is an informative article. DiarioBitcoin is a media outlet, it does not promote, endorse or recommend any particular investment. It is worth noting that investments in cryptoassets are not regulated in some countries. They may not be suitable for retail investors as the entire amount invested could be lost. Check the laws of your country before investing.