Ethereum core developer Tim Beiko disclosed in a post on X that the Ethereum Foundation’s email list seems to have been leaked due to a hack of the upstream service provider SendPulse. The attacker impersonated the name of the Ethereum Foundation (updates@ethereum.org) and sent phishing emails to subscribers. Tim Beiko shared an example image. The content of the email is a false cooperation between the Ethereum Foundation and the liquidity staking protocol Lido. statement.
PSA: it seems like the mailing list provider the EF uses for "updates@ethereum.org" has been compromised. We are currently trying to reach @SendPulseCom to resolve the issue. Please don't click any links sent from that email. Here's a sample fake email that was received: pic.twitter.com/eRIANSPYyT
— timbeiko.eth (@TimBeiko) June 23, 2024
Tim Beiko urged users not to click on any links in the email.
This article The Ethereum Foundation email list was leaked, users should be careful about phishing links. It first appeared on Zombit.
