Email marketing platform Mailchimp hacked to loot cryptocurrency wallets

Mailchimp, the email marketing platform, owned by Intuit Inc, has been breached as a broader ploy to target Trezor cryptocurrency wallet service users since last year.

The hackers shot out phishing messages to Trezor users which said a “security incident” has taken place and that the users need to download a new Trezor suite app. The app in reality is a malicious program intended to siphon off crypto funds of the users, said SatoshiLabs, Trezor’s parent company in blogpost.

The hackers made the employees in Mailchimp’s customer support team fall for the trick and handed over their credentials, which were used to get hold of the company’s own internal tools to send the emails.

“This attack is exceptional in its sophistication and was clearly planned to a high level of detail,” the company said.

“The phishing application is a cloned version of Trezor Suite with very realistic functionality and also included a web version of the app,” it added.

It is believed that over 100 Trezor users have given in to fake email. The amount of cryptocurrency stolen from those who have been tricked is not known yet.

“We are currently looking into a solution that will improve the security of our newsletters going forward, and we have suspended any email communication until we have more information about the attack,” the company said.