According to CryptoPotato, a vulnerability in SendPulse, the email automation service used by the Ethereum Foundation, led to the leakage of the foundation's mailing list. This was reported by Ethereum core developer Tim Beiko. The breach allowed an attacker to send phishing emails from updates@ethereum.org to subscribers. The foundation has since limited access to the mailing list. Beiko urged users not to click any links sent from that email.
Phishing attacks have become increasingly common in the crypto space. Last year, the account of Ethereum co-founder Vitalik Buterin was hacked by scammers who posted a fake NFT giveaway, prompting users to click a malicious link. This resulted in victims losing around $800,000. Buterin later confirmed that the hack was the result of a SIM swap attack.
In a more recent incident, cryptocurrency portfolio tracker CoinStats disclosed that it had experienced a phishing attack affecting 1,590 cryptocurrency wallets, which represented 1.3% of all its wallets. Consequently, the company temporarily shut down its application. Additionally, SlowMist founder Yu Xian revealed that the TON blockchain ecosystem had become an appealing target for phishing attacks due to its explosive surge this year. Xian explained that Telegram accounts that were opened using anonymous numbers are more prone to such attacks.