MarketsXplora

Cryptocurrency

Trezor Issues Security Alert After Phishing Attack Exploits Support Form

BySamson Ononeme

Jun 23, 2025 #Trezor
Trezor confirmed scammers abused its contact form to send fake support emails in a phishing attempt. Although the issue is now contained, the company is reviewing its systems and advising users to protect wallet backups and avoid suspicious links.Crypto wallet maker Trezor reports a phishing attack using its support form auto-replies.

Key Insights

  • Trezor warned users of a phishing attack that exploited its support form to send scam emails mimicking legitimate replies.
  • The company confirmed no breach of its email database; addresses were likely sourced from past unrelated leaks.

PRAGUE (MarketsXplora) – Cryptocurrency hardware wallet maker Trezor has issued a security warning to users after attackers exploited its online support form to distribute convincing phishing emails.

The company alerted customers on Monday morning, warning that the malicious messages closely mimicked legitimate Trezor support replies.

“These scam emails appear legitimate but are a phishing attempt,” Trezor’s official X account posted. “Remember, NEVER share your wallet backup — it must always stay private and offline. Trezor will never ask for your wallet backup.”

According to the company, the attack involved submitting queries to Trezor’s support form using email addresses of potential victims. This triggered an automatic reply from Trezor’s system, lending credibility to the phishing messages.

Read also! Firmware Flaw Exposes Trezor Wallets to Remote Attack

Trezor emphasized that its contact form remains “safe and secure” and that no email database was breached. It suggested that attackers likely used email addresses harvested from earlier, unrelated data leaks to initiate the scheme.

The firm said it had contained the incident and is investigating preventative measures.

“We’re actively researching ways to prevent future abuse,” it added. “Security is a continuous process. Stay vigilant.”

The incident follows a similar event in March 2022, when a breach at Trezor’s newsletter provider Mailchimp led to phishing emails that lured users into downloading malicious software disguised as a firmware update.

Read also! Ledger Launches ‘Recovery Key’ to Simplify Crypto Wallet Access

Other major players in the crypto wallet space have also been affected by email-related threats. In 2020, rival wallet maker Ledger suffered a major data leak exposing customer email addresses, which sparked a prolonged phishing campaign. Wallet providers such as MetaMask and Trust Wallet have likewise faced impersonation attacks via email, fake support channels, and social media — frequently leveraging stolen or spoofed credentials.

Trezor has urged users to remain cautious and to avoid sharing sensitive recovery details under any circumstance.

By Samson Ononeme

Meet Samson Ononeme, a dynamic writer, editor, and CEO of marketsxplora.com. With a passion for words and a sharp business acumen, he captivates readers with captivating storytelling and delivers insightful market analysis.

Related Post

Cryptocurrency
Bitcoin Becomes Fifth-Largest Global Asset as Price Soars Above $122,000
Jul 14, 2025 Samson Ononeme
Cryptocurrency
U.S. DOJ Links $250,000 Crypto Scam to MoonPay Executives in Nigeria-Based Fraud Case
Jul 12, 2025 Samson Ononeme
Cryptocurrency
Robinhood Investigated for Allegedly Misleading Crypto Traders on Costs
Jul 11, 2025 Samson Ononeme

Leave a Reply