Trezor crypto wallet vendor reports third party breach, exposing 66k people

Trezor, a provider of hardware wallets for cryptocurrency, announced a security breach that occurred on January 17 2024, affecting potentially nearly 66,000 users. This breach stemmed from unauthorized access to a third-party support portal, exposing the contact details of users who had interacted with Trezor's support team since December 2021. Additionally, the breach impacted eight individuals who used a related third-party discussion platform, leading to the exposure of their contact details.

Trezor rapidly alerted the potentially impacted users, reassuring them that their funds were secure and Trezor devices were not compromised. At least 41users have received targeted emails from attackers after the breach, attempting to extract information about their recovery seeds. The risk of phishing attacks — where cybercriminals impersonate legitimate entities to steal sensitive information — is a major concern.