Summary: A new phishing campaign named PoisonSeed is targeting CRM and bulk email providers to steal cryptocurrency from users by tricking them into using compromised seed phrases. The campaign has reportedly led to significant financial losses for Coinbase users, and the phishing emails were sent via a compromised SendGrid account. Cybersecurity firm Silent Push has linked various domains and tactics to this ongoing threat against cryptocurrency owners.
Affected: CRM and bulk email providers (Mailchimp, Hubspot, Mailgun, SendGrid, Zoho), and cryptocurrency users (Coinbase, Ledger)
Keypoints :
- The PoisonSeed phishing campaign involves tricking victims into using malicious crypto seed phrases.
- Attackers have utilized phishing emails that falsely claim Coinbase is moving to self-custodial wallets.
- Silent Push identified 49 unique domains linked to the campaign, including connections to previous phishing attacks and threat actors.
Source: https://www.securityweek.com/crm-bulk-email-providers-targeted-in-crypto-phishing-campaign/
Views: 12