The fear serves as a strong reminder for people to be wary when clicking on links in emails related to digital assets.
Hardware wallet service provider Trezor confirmed to the media that it was aware of this phishing campaign.
Trezor said in an email to CoinDesk on October 27,
"We are aware of recent phishing campaigns and are actively investigating. We continually report fake websites, contact domain registrars, and educate and warn our customers about known risks." The company advises users to never enter a recovery seed directly into any website, mobile app, or type it into a computer.
“The only safe way to use your recovery seed is to follow the instructions displayed on your connected Trezor hardware wallet,” Trezor added
Blockchain analyst ZachXBT has highlighted that some Trezor hardware wallet users are receiving phishing emails, raising concerns about a potential data breach at the hardware wallet company.
Users using social media platforms such as Reddit and X (formerly known as Twitter) reported receiving suspicious emails that directed them to fake Trezor websites urging them to update the app.
For example, ZachXBT identified user JHDN, who expressed concern to X, suggesting a potential security breach with the hardware wallet service provider, as an email created specifically for his Trezor account received a phishing email.
Similarly, Reddit user Avid28193 expressed concern that Trezor’s customer database may have been compromised, saying:
“Apparently someone got hold of the Trezor customer database. I received several emails and text messages about ‘firmware updates’ over the course of a month or so.”
Trezor or Evri?
Meanwhile, some community members questioned whether the leak originated from Trezor or its UK-based reseller, Evri.
Evri is one of the largest parcel delivery companies in the UK and is used by top retail brands such as eBay and Amazon.
X-user TheCrypticWolf pointed out that the leak may not have originated from Trezor, as it automatically deletes its customer information after 30 days.
ZachXBT advised the community to be careful of phishing campaigns and said he was unsure if the leak happened to Evri or Trezor. He wrote:
"Be careful, this person just received a phishing email to an email address associated with their Trezor purchase. This was a new email created specifically for the purchase, which was made 6 months ago. It looks like there has been a potential data breach with Trezor or Evri (the UK courier that ships Trezors)."
Evri has not responded to CryptoSlate’s request for comment as of press time.
Last year, more than 100,000 users of the hardware wallet service provider fell victim to a phishing email attack. Trezor attributed the breach to an insider who compromised a newsletter database hosted on Mailchimp.
