Criminal hackers gained access to Mailchimp systems after obtaining employee login credentials through social engineering. Criminals were after data from cryptocurrency mailing lists.
mail monkey He confirmed that he was a victim of an attack after customers of Trezor, a hardware cryptocurrency wallet company, received notifications That the company has a data breach† The fake messages turned out to be a phishing attack in an attempt to get customers to install malware so that criminals could steal cryptocurrency.
The criminals gained access to Mailchimp’s customer support systems and management tools after stealing employee login credentials through social engineering. According to Mailchimp, the perpetrators subsequently managed to hack 319 customer accounts, including Trezor’s, and succeeded in stealing mail data from 102 accounts. They’ve also got APIs with which they can set up mail campaigns outside of the Mailchimp dashboard.
According to Mailchimp, the attack was aimed squarely at cryptocurrencies and finance. company Sleeping computer reports It quickly closes affected employee accounts and disables affected APIs. The company discovered the attack on March 26. It is not known if the hack led to further phishing attacks.

“Coffee buff. Twitter fanatic. Tv practitioner. Social media advocate. Pop culture ninja.”
More Stories
Mercedes prototype travels 1,000 kilometers without recharging (and consumes much less)
TomTom loses due to declining car production – tablets and phones – news
At this spa, you plunge into a bath full of wine: ‘It has an anti-inflammatory effect’ | Instagram NINA