Hackers sent email that Trezor database has been hacked hacked

[Wind_FURY]

They're not merely trying to target stupid/naive users, they're targeting stupid/naive TREZOR USERS. There has been a data leak because I have been receiving these sorts of emails almost everyday.

The subject of the email goes from "You have a reward from Trezor" to "New critical Trezor Suite update needed". [img

Are you receiving those scam emails on addresses associated with Trezor and its products/services? In other words, are you a Trezor user that bought their devices and provided the same email address where you are now receiving those emails on? It can also be a leak connected to marketing & promotion or their support systems. Lastly, it might not be Trezor that is at fault at all but a different service from the crypto space. Scammers are known for trying their luck, thinking if you signed up and used one thing, maybe you also own and use another one.

I bought BOTH my Trezor One directly from their website. That's the only vendor where I have used my personal email.

    ¯\_(ツ)_/¯

I should have made a dedicated email just for purchasing items in the internet. Haha. But I bought my Trezors during 2019 when I started to seriously buy Bitcoin with larger amounts of my savings. I didn't have an actual crypto OPSEC that early in my Bitcoin journey.

[Pmalek]

I bought BOTH my Trezor One directly from their website. That's the only vendor where I have used my personal email.

There have been a few data leaks in the past where Trezor users were impacted. One happened in 2024, when Trezor's third-party support portal was hacked and the attackers gained access to tens of thousands of emails, usernames, and maybe phone numbers. Not full information, though. Another hack happened recently that is not Trezor's fault, but affects them nevertheless. Various online marketplaces like Amazon were attacked and private info of Trezor buyers was also obtained among other things. There have probably been others. It's sadly become a normal thing in the digital age.

[satscraper]

We have seen in the past cases of Ledger users receiving physical mail with various types of scams and phishing attempts. There were even cases of hardware wallets being sent to someone's house.

The same is happening with Trezor.
Scammers are sending out letters to people, asking them to complete a mandatory "authentication check." If not, they claim the users won't be able to access Trezor Suite and would have limited functionality. The letters contain a QR code that they want you to scan to activate the authentication check. These lead to phishing sites where they want you to enter your seed so they can steal your coins.

The same fraudster group is now sending fake letters to Coinkite customers. The style of both letters is the same^{so they don't overburden themselves}, but in the new one they shift the user’s attention toward today’s buzz around quantum computers. The final goal remains the same: they want to obtain SEED phrase relevant to user’s wallet. I wonder which wallet users will be targeted next by this fraudster group.

[Pmalek]

The same fraudster group is now sending fake letters to Coinkite customers. The style of both letters is the same^{so they don't overburden themselves}, but in the new one they shift the user’s attention toward today’s buzz around quantum computers. The final goal remains the same: they want to obtain SEED phrase relevant to user’s wallet. I wonder which wallet users will be targeted next by this fraudster group.

The receiver is probably German or Austrian, so they sent him a letter in German. You got to love his tweet, where he writes that one of the red flags that this is a scam letter is that it's too polite to have been written by nvk.

The scammers made a list of vulnerable hardware, and listed popular Coldcard devices, the Opendime, and the TapSigner. But they also listed the Micro SD cards that you can purchase at Coinkite's online shop as also needing the "quantum-safe upgrade." lol