The manufacturer of hardware cryptocurrency wallets, Trezor, has warned users about a new phishing campaign targeting owners of their devices. Fraudsters have exploited the company’s official website, misusing the contact form to send fake emails that mimic responses from customer support.
This is reported by Business • Media
Details of the Incident and Company Warning
According to the Trezor team, hackers disguised their messages as legitimate inquiries from support, attempting to deceive users and gain access to their backups. The company quickly identified the scheme and blocked it.
“We discovered a security issue when malicious actors used our contact form to send fraudulent emails that looked like genuine responses from Trezor support.”
The statement emphasizes that there has been no leak of email addresses, and the contact form was not hacked. However, Trezor has taken additional measures to prevent similar situations in the future.
Recommendations for Users and Previous Incidents
Users are urged not to disclose their cryptocurrency wallet backups, to keep them only offline, and not to respond to suspicious emails. The company stressed that Trezor never asks for such information.
Despite repeated attack attempts over the past year and a half, the company continuously improves its security mechanisms and warns about new risks. In particular:
- In January 2024, unauthorized access to a third-party support portal was recorded;
- In March 2024, an unknown individual hacked Trezor’s account on the social network X and posted fake presales in the Solana network;
- In March 2025, Ledger Donjon specialists discovered a vulnerability in the Safe 3 model, which Trezor promptly fixed.
The company emphasizes the importance of security:
“Security is an ongoing process. Be vigilant, and never enter your backups, even if the email seems genuine.”