Summary: The ‘PoisonSeed’ phishing campaign compromises corporate email marketing accounts to distribute fraudulent emails containing crypto seed phrases, aimed at draining users’ cryptocurrency wallets. Targeting platforms like Coinbase and Ledger through compromised accounts at Mailchimp, SendGrid, HubSpot, Mailgun, and Zoho, the campaign uses professional phishing tactics to bait recipients into providing their credentials. Victims are misled into inputting these seed phrases, transferring their digital assets directly to attackers.
Affected: Coinbase, Ledger, Mailchimp, SendGrid, HubSpot, Mailgun, Zoho
Keypoints :
- Phishing campaign leverages compromised email marketing accounts.
- Attackers target high-value individuals with professionally crafted emails.
- Victims are tricked into transferring assets using misleading seed phrases.
- Best practices include independently verifying urgent email requests.
- Users should never use seed phrases provided by external sources.