Hacking of crypto companies exposed emails and active phishing campaign – DiarioBitcoin
By Hannah Perez
A massive hack of cryptocurrency companies has been reported in progress that exposed user emails. The hackers have now started a phishing campaign via emails.
***
- Hacking in progress reported on crypto companies: Beware of malicious emails
- Tether CEO Paolo Ardoino warned of an attack against an industry email provider
- The attackers would have gained access to the newsletter mailing lists of CoinGecko and other firms
- Users are advised not to open links from suspicious emails
A group of companies in the cryptocurrency industry are falling victim to an ongoing hacking attack that is apparently leading to an email phishing campaign.
Cryptocurrency users should exercise absolute caution at this time due to the existence of an apparent “supply chain email breach attack” ongoing that uses newsletter mailing lists to send malicious phishing links to users.
The executive director of Tether, Paolo Ardoino, issued a warning this Thursday about a massive hack that would target an anonymous provider that manages mailing lists for cryptocurrency companies. The founder of CoinGeckoBobby Ong also confirmed that there appears to have been a breach of users’ email data.
The name of the vendor that has been breached has not been revealed, and the scope of the attack is also unknown. According to Ardoino, the company is widely used by numerous players in the digital asset industry and At least two companies that use that supplier have confirmed that they have been affected.
“We won’t be naming names yet until the investigation is complete, but be wary of any emails suggesting crypto releases received as early as 24 hours ago.“wrote the CEO of Tether.
Ong, for his part, said that a phishing campaign promoting an alleged fake token of CoinGecko has begun to circulate. In this regard, he denied that the company is launching a token and advised users not to click on any link that promises or is related to a token. CoinGecko received by email.
“We at CoinGecko may be potentially affected and are actively working with our vendor to further investigate and determine the extent of this breach.“he said in a post on x.
We have seen CoinGecko phishing emails sent from other customer accounts. No CoinGecko token is being planned, so don’t be fooled by phishing emails.
Beware of malicious emails
It is worth noting that in an attack of phishing– a term that refers to the sport of fishing – hackers pose as a trusted entity to eventually steal account passwords and rob victims.
Phishing campaigns often lead a user to click on a malicious link under the belief that it is a legitimate link from a trusted company. That link will be designed to drain the customer’s personal information, such as their login details or password from a cryptocurrency wallet, granting access to attackers.
These types of attacks are not uncommon in the digital currency industry. In the past, prominent cryptocurrency companies like CoinMarketCap, Gemini, OpenSea, The Sandbox and trezor have been victims of similar incidents where hackers gain access to users’ email database to launch phishing campaigns.
**This post will be updated should more details emerge regarding the ongoing hacking incident.
Article by Hannah Estefanía Pérez / DailyBitcoin
Picture of Depositphotos
WARNING: This is an informative article. DiarioBitcoin is a media outlet, it does not promote, endorse or recommend any particular investment. It is worth noting that investments in cryptoassets are not regulated in some countries. They may not be suitable for retail investors as the entire amount invested could be lost. Check the laws of your country before investing.
