Trezor issues phishing alert after attackers abuse support contact form to send scam emails
Quick Take
- Trezor issued a security alert urging users to remain vigilant against phishing attempts after attackers abused its support contact form.
- The firm stated that the issue has been contained and no email breach occurred, adding that it is researching ways to prevent future abuse.
Crypto hardware wallet manufacturer Trezor issued a security alert to its users on Monday morning after attackers abused its online support form to send scam emails masquerading as legitimate Trezor support replies.
"These scam emails appear legitimate but are a phishing attempt," Trezor's official account posted to X. "Remember, NEVER share your wallet backup — it must always stay private and offline. Trezor will never ask for your wallet backup."
The phishing attempts worked by contacting Trezor's support on behalf of affected email addresses, triggering an auto-reply that appears as a legitimate Trezor support message. "Although the attackers were able to manipulate the subject line of the request, they did not gain access to any Trezor systems, internal infrastructure, or user data," a Trezor spokesperson told The Block.
Trezor said the issue has been contained, its contact form remains "safe and secure," and there was no email breach — though addresses were presumably obtained via previous crypto data breaches in order to launch the attack. "We do not know the origin of the email list used in the attack, but we have found no evidence of a breach on our side," the spokesperson said.
"Security of our users is our top priority," they added. "We have already launched an internal investigation and informed our users via official social media channels. And the phishing website linked to the fraudulent campaign has also been successfully taken down with the help of our partners."
"Security is a continuous process. Stay vigilant," the firm said on X.
Email-related crypto attacks
It's not the first time Trezor has faced an email-related incident. In March 2022, a breach of its newsletter provider Mailchimp led to phishing emails being sent to users, prompting them to download malicious software disguised as a Trezor update.
Trezor's competitors, like Ledger, have also faced similar issues, including a major 2020 data leak that exposed customer emails and triggered an ongoing wave of phishing attacks. MetaMask, Trust Wallet, and others have also been targets of impersonation schemes via email, fake support channels, and social media — often using stolen or spoofed credentials.
Updated with additional comments from Trezor.
Disclaimer: The Block is an independent media outlet that delivers news, research, and data. As of November 2023, Foresight Ventures is a majority investor of The Block. Foresight Ventures invests in other companies in the crypto space. Crypto exchange Bitget is an anchor LP for Foresight Ventures. The Block continues to operate independently to deliver objective, impactful, and timely information about the crypto industry. Here are our current financial disclosures.
© 2025 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.
