Trezor hardware wallet developers reported a security incident with a third-party support provider that resulted in a data breach of approximately 66,000 customers.
Well-known hardware wallet company Trezor has announced a security breach in which unauthorized persons gained access to the platform of one of its third-party providers. Trezor claims no funds were lost. However, the security incident left 66,000 of the company’s customers at risk of a phishing attack.
Trezor Raises the Alarm after Security Incident
According to a statement from Trezor, on January 17, 2024, at exactly 8:24 pm CET, unauthorized access to the company’s support ticket portal was detected. The hardware wallet company says that the breach occurred only at the third-party level and that it was able to block the unknown person’s access in a very short period of time.
The contact details of 66,000 users who accessed Trezor Support since 2021 may have been compromised. The exposed data could include names, nicknames and email addresses. Trezor explained it in the following terms:
“This breach occurred at the level of that third-party service provider that we are currently engaged with. “We are conducting a thorough investigation into the scope of this incident, together with the third-party service provider.”
An internal audit determined that the perpetrators may have gained access to certain customer data, such as email and name/nickname. However, Trezor claims that “only” the data of the 66,000 customers who have interacted with the support team since December 2021 was leaked. The hardware wallet company said it notified all affected users of the incident via email and acted urgently.
Additionally, Trezor revealed that the perpetrators attempted to contact 41 of the company’s clients and sent an email requesting their wallet to be seeded again.
Similarly, Trezor acted quickly to prevent the situation by notifying contacted users of the security breach, thus ensuring that hackers did not receive an initial recovery phase.
Additionally, the company’s support team also warned another group of eight people who registered on the Trezor test discussion platform hosted by the compromised third-party service, as investigations revealed that malicious actors may have also had access to their contact details.
Beware of Phishing Campaigns
Trezor explains that the recent security incident did not result in any loss of user funds. However, there remains a high risk of phishing attacks targeting the initial recovery phase mechanism after customer data has been compromised.
The crypto wallet company asks all users to provide their recovery phrase, never pass it on to third parties and always contact the support team to resolve any issue related to your wallet.
“Given the leak of contact data, there remains an increased risk of phishing attacks aimed at obtaining recovery seeds from affected users,” Trezor warned.
Trezor said it has diligently reviewed interactions and proactively contacted affected customers, successfully preventing the disclosure of any recovery seed phrases. The company emphasized that none of its users’ funds have been compromised and assured that the devices remain secure.
This recent warning echoes a similar one issued by Trezor in March 2023, which highlighted an ongoing phishing scam. Although Trezor did not suffer any security breach, scammers falsely claimed otherwise.
Phishing attacks remain one of the most common problems affecting the crypto ecosystem. According to blockchain security company Scam Sniffer, 324,000 people lost assets worth $300 million due to phishing scams in 2023 alone. These figures only underline the status of this threat and the need to continue developing effective security measures.
By Leonardo Perez
