MailerLite Confirms Hack and Phishing Attacks
MailerLite has confirmed reports of hackers gaining access to customers’ accounts, resulting in a calculated crypto phishing exploit aimed at popular web3 firms. The company released a detailed explanation of the events leading up to the hack and subsequent attacks. Approximately $3.3 million in crypto assets were drained from users.
Hackers Target 177 Accounts
An internal investigation revealed that hackers gained access through a customer support team member who clicked on a fraudulent image. This led to a broader breach in the admin panel. The hackers then executed a password reset in the impersonator user email accounts, specifically targeting cryptocurrency-related accounts. A total of 177 MailerLite accounts were impacted, although only a small number of companies were targeted.
$3.3 Million Drained in Crypto Phishing Attacks
A phishing campaign targeted web3 firms such as WalletConnect, De.Fi, Token Terminal, and Cointelegraph. Initially, $580,000 in digital assets was stolen by sending malicious links through emails claiming to offer community airdrops. The incident sparked concerns about the safety of cryptocurrencies and the use of airdrops for phishing purposes. The flagged wallet address contained around 280 ETH, with an estimated total amount drained from users of $3.3 million.
Hot Take: Importance of Heightened Vigilance and Security
This breach highlights the need for increased vigilance and robust security protocols, especially when handling routine support interactions. It serves as a reminder for individuals and companies to be cautious and verify the authenticity of emails and links before interacting with them. Implementing strong security measures is crucial in protecting valuable crypto assets.
By
By
By
By