Hardware Wallet Manufacturer Trezor Warns Users About Phishing Attacks

The maker of Trezor hardware crypto wallets is warning users about phishing attacks. Hackers exploited the company’s automated support system to send out malicious messages.

The issue stems from the fact that anyone could open a support ticket on the company’s website by simply entering an arbitrary email address and a subject line. The system would then automatically send the ticket number to the provided email and use the entered subject as the email’s title.

Cybercriminals abused this feature by sending users tickets with phishing-themed subject lines. For example:
"[URGENT]: vault.trezor.guide – Set up a Trezor vault now to protect assets that may be at risk."

Since the emails came from Trezor’s official address, [email protected], they appeared legitimate to recipients. However, the subject lines contained fake warnings and links to fraudulent websites. Users who clicked the link were directed to a phishing page that asked for their wallet credentials.

Trezor devices are hardware cold wallets that operate offline and require physical confirmation to approve transactions. However, the wallets set up on Trezor devices are secured by a 24-word seed phrase, which essentially acts as the master password to all user assets. This means anyone who knows another user’s seed phrase can recreate their wallet on another device and gain full access to their cryptocurrency.

Trezor representatives remind device owners that seed phrases should never be shared under any circumstances.

The company also assured users that it is already working on implementing security measures to prevent similar abuses in the future.