Trezor Reports Security Incident: 66,000 Users’ Contact Information Leaked
Hardware wallet company Trezor has issued a statement regarding a recent security incident. The company revealed that an unauthorized entity gained access to its third-party support ticket portal, resulting in the leak of contact information for approximately 66,000 users. These users may include customers who have interacted with Trezor’s support team since the end of 2021. However, Trezor assured its users that no digital assets were compromised during the attack. The startup has taken immediate action by launching an investigation and working closely with the third-party service provider involved. It has also sent emails to all affected contacts to provide details about the incident and raise awareness of potential phishing attacks.
“Although unconfirmed, we consider it our responsibility to inform our affected users of the possibility of their contact details having been exposed, and at risk of a phishing attack. Acting out of an abundance of caution and a commitment to transparency, we have emailed all of the 66,000 contacts, alerting them to the scope of the incident.”
Trezor Security Team
Past Breaches and Scams
This is not the first time Trezor has experienced a breach. In October 2023, cybersecurity firm Unciphered claimed to have hacked Trezor’s Trezor T model using a vulnerability that required physical possession of the device, specialized tools, and knowledge of their “in-house exploit” method. However, Unciphered confirmed that Trezor had since addressed the vulnerability and secured its latest firmware against any breaches.
In another incident last year, a crypto investor fell victim to a fake hardware wallet scam that resulted in the loss of approximately 1.33 Bitcoin (BTC). The fake wallet closely resembled an original Trezor wallet and was purchased from a trusted seller. The compromised wallet displayed firmware and bootloader versions 2.4.3 and 2.0.4, respectively. Trezor had already removed these versions from Github due to the product being compromised and the market being flooded with counterfeit wallets.
Hot Take: Trezor’s Ongoing Commitment to Security
Trezor’s response to the recent security incident demonstrates its commitment to user safety and transparency. By promptly informing affected users and taking immediate action to investigate the breach, Trezor prioritizes customer trust and security. While this incident highlights the importance of remaining vigilant against phishing attacks, it is reassuring to know that no digital assets were compromised during the breach. Trezor’s history of addressing vulnerabilities and continuously improving its firmware further reinforces its dedication to providing secure hardware wallets for cryptocurrency storage.