Trezor, who manufacture hardware devices designed to store digital currency, has warned its customers not to reply to official-looking emails after identifying a convincing phishing campaign.
Several customers complained to Trezor’s twitter account over the weekend to complain about a scam email claiming that a data breach had hit over 100,000 customers.
The email reportedly told customers that a “malicious actor” had successfully compromised Trezor Suite servers and accessed their wallets.
In the email, scammers urged customers to download the latest version of the application to “protect” their crypto assets. This download would then enable threat actors to steal the user’s recovery code used to recover wallets in the event that a device is lost or stolen.