The company Mailer Lite, which operates in the digital marketing sector, recently fell victim to a phishing attack. According to a report from Blockaid, a company that focuses on security and privacy in the web3 world, Mailer Lite lost more than $600,000 due to the attack on Tuesday, January 23, 2024.
Abuse of Security Holes
The perpetrator of this phishing attack managed to find a security hole in the Mailer Lite system. They exploit this loophole to send emails that appear official and convincing, but actually contain malicious links.
These links direct victims to sites that can drain the contents of their crypto wallets .
Sophisticated Fraud Techniques
Due to this compromise the attackers were able to send convincing emails to end users, linking to malicious wallet drainer websites.pic.twitter.com/7nk15PGOaa
— Blockaid (@blockaid_) January 23, 2024
Blockaid explained on social media that the attackers were able to do this because Mailer Lite had previously been given permission to send emails on behalf of certain companies. This makes it easy for attackers to create emails that appear as if they were sent from these legitimate companies.
Attackers use so-called 'dangling DNS records'. This is a DNS record that is still active even though the company in question no longer uses MailerLite services. This situation provides an opportunity for attackers to take over and impersonate these companies.
Phishing Attack Targets
Some of the platforms targeted by this phishing attack are CoinTelegraph, WalletConnect, Token Terminal, and De.Fi, as reported by ZachXBT, an expert in the field of crypto security.
Also read:
Pig Butchering Scam: Understanding an Alarming Crypto Fraud Scheme
Large-Scale Crypto Fraud: Rug Pulls Target Thousands of Victims
$1.5 million Crypto Fraud Scheme Exposed in India!
Trezor Confirms Data Leak, Phishing Threat Lurks Users
DISCLAIMER : This article is informational in nature and is not an offer or invitation to sell or buy any crypto assets. Trading crypto assets is a high-risk activity. Crypto asset prices are volatile, where prices can change significantly from time to time and Bittime is not responsible for changes in fluctuations in crypto asset exchange rates.
Comments
0 comments
Please sign in to leave a comment.