[WARNING]: Fake Trezor - https://login-trezor.io/

[Kemarit]

Another tricky and malicious and obviously fake Trezor website who's intention is to steal our mnemonic phrase.

Website:

Code:

https://login-trezor.io/

What makes it more tricky is that the look and feel of the website specially the .io extension domain name. Others might think this is legit and can fall for this trap every easily.

And the funny thing is that when you click "Choose your device to continue", it will automatically ask you to enter 24 seed as compare to the real trezor website wherein it would detect first if you have a hardware wallet connected.



And the domain was registered 13 days ago.

Code:

Whois Record for Login-Trezor.io
 Domain Profile
Registrant Org	WhoisGuard, Inc.
Registrant Country	pa
Registrar	NameCheap, Inc
IANA ID: 1068
URL: www.namecheap.com
Whois Server: whois.namecheap.com

(p)
Registrar Status	serverTransferProhibited
Dates	13 days old
Created on 2020-03-23
Expires on 2021-03-23
Updated on 2020-03-23

http://whois.domaintools.com/login-trezor.io

Archive here

[1714671549]

1714671549

[Chikito]

I see the relationship that's IP
https://www.virustotal.com/gui/ip-address/217.107.219.186/relations

Code:

www.wallet-trezor.io

A scammer usually use same trick and domain.

[UserU]

Good job with the find. The domain looks pretty legit with the SSL and I wonder how many might have fallen victim to this within the past 13 days.

[xxjumperxx]

Wow thanks for the heads-up!
They made it look really good and a newbie could and would certainly fall for a scam like this!

 I certainly hope that nobody has fallen for it!

[Kaliecious]

thank you, very useful information for trezor users. they must be careful to log in to their account
now a lot of phishing webs are popping up to steal user data

[Lucius]

All the wisdom needed to avoid this kind of thing is that every hardware wallet user realizes that he is not typing his seed words anywhere but the device itself. Any website, extension, plugin, or person on social networking site that asks you to type in your seed is a pretty obvious sign that it's a scam.

In addition, keep legitimate web pages with your bookmarks and always access them in this way with additional verification. If you are using a search engine, avoid Google Search or use Firefox with uBlock Origin to block Google Ads.