Phishing Scam Targets Decrypting Newsletter Subscribers—Here’s the Latest.

Phishing Scam Targets Decrypting Newsletter Subscribers—Here'S The Latest.



On the morning of March 27, hackers pretended to be Decrypt Sent an email announcing a fake token airdrop to our newsletter subscribers. Once we got wind of the phishing attempt, we sent out a follow-up email informing our readers of the scam.

However, in a hurry to warn our subscribers, and for this reason Same phishing attempt In January, we mistakenly blamed our email service provider, MailerLite, for this attack. In fact, it seems that the hackers got the password key of the service from someone DecryptSide—MailerLite was not at fault.

For security reasons, MailerLite does not store data on API keys, so it cannot be accessed through the MailerLite admin panel or the general account, a MailerLite spokesperson told us today. The January 23, 2024 MailerLite data breach affected the Decrypt Media account, meaning criminals were unable to obtain API keys leading to the sending of phishing campaigns on March 27, 2024.

Therefore, we are embarrassed and sincerely apologize to MailerLite for coming to the wrong conclusion.

bybit

We are investigating what happened and will work with law enforcement. According to MailerLite, The phishing campaigns were processed using the MailerLite API from the IP address “69.4.234.86” and the user agent “python-requests/2.31.0”. After hackers entered our email list, they removed addresses ending in decrypt.co or decryptmedia.com so that our staff could not immediately contact them and sent fake email.

Fortunately, most of our readers are wary of such phishing attempts. Only one person tried to link the wallet to a fake address.

But that's too much. As mentioned in our previous email, crypto scams are rampant in our industry, and are becoming more sophisticated all the time. DecryptAlmost every other crypto firm, has been Impersonated or otherwise used as an attack vector. Hackers have even gone so far as to set up completely different websites. Fake Discord servers, and social media accounts impersonate our employees. (Note that we only have two domains: decrypt.co and decryptmedia.com—be careful if someone redirects you to another domain!)

So please be careful there. And we do too. Thanks as always for reading Decrypt.

Stay on top of crypto news, get daily updates in your inbox.

Leave a Reply

Pin It on Pinterest