Nansen’s phishing emails flood crypto investors’ inboxes.
Several users of the crypt analytics platform have received phishing emails from scammers offering Nansen a “special opportunity” to participate in the phishing “Nansen Airdrop”.
In the year On November 23, members of the crypto community reported an ongoing phishing campaign on X (formerly Twitter) targeting Nansen users. The scammers are impersonating Nansen and sending fake invitations to an exclusive airdrop event.
Cointelegraph confirmed the hack from the notes of the Crypto Investigative Officer (Official), who initially warned the community about the attack. He suspected that user data from a previous third-party database leak was being used to target Nansen users.
On September 22nd, one of Nansen's third-party providers suffered a security breach, affecting approximately 7% of the system's users. Users who experienced the breach reportedly had their email addresses exposed along with some password hashes, and many had their blockchain addresses compromised. At the time, Nansen said it would identify and notify those affected and ask everyone to change their passwords. He also explained that wallet funds were not affected by the event.
A screenshot of Nanson's phishing email shared with Cointelegraph shows the sender as “mail@networkforgood.com,” an email address completely unrelated to the original analytics platform.
He said that for the next 48 hours, users can claim verified allocated fake NANSEN tokens. The scammers attach a link to the email that redirects users to a fraudulent website.
Officials recommend reporting suspected phishing links to databases such as chainabuse.com, cryptoscamdb.org, and pishtank.org to help the Internet community reduce the success rate of such attacks.
Nansen did not respond to Cointelegraph's request for comment.
Related: No ‘money migration' following Binance–DOJ settlement – Nansen
More crypto investors are phishing targets after the recent release of user data from TrueCoin and FTX bankruptcy claims and more.
This is someone hacking our public API, which exposes the connection between public wallet addresses and public Twitter usernames.
It's like saying someone has hacked you by looking at your official Twitter feed.
Irresponsible reporting from @TheBlock_ and @vishal4c https://t.co/GIXOWazqBk
— friend.tech (@friendtech) August 21, 2023
However, Friend.Tech, which has more than 100,000 users, recently denied that its database was compromised. “It's like someone hacked you by looking at your public Twitter feed,” the Friend.tech team explained, explaining that the data came from scraping the public API.
Magazine: This is your brain on crypto: Substance abuse grows among crypto traders