Tim Beiko said that the Ethereum Foundation's mailing list has been leaked. The vulnerability seems to have occurred on SendPulse, an email automation service used by the foundation. The attacker sent a phishing email from updates@ethereum.org to subscribers. The foundation has locked access to the mailing list.