Ethereum Foundation email hacked to promote fake Lido staking phishing scam
A hacker broke into the Ethereum Foundation’s email server and sent scam emails to 35,794 people, recording 81 subscriber email addresses in the process.
On June 23, the Ethereum Foundation’s “update” email account was hacked and used to promote a phishing scam, according to a July 2 blog post from the foundation. The foundation has recovered the account, and the malicious emails are no longer being sent out.
According to the post, 35,794 scam emails were sent to the foundation’s subscribers and other individuals using its official updates@blog.ethereum.org email address. The foundation’s investigation led to the conclusion that no victims lost cryptocurrency from the attack. However, the email addresses of 81 subscribers may have been exposed to the attacker.
The emails contained a fake announcement stating that the Ethereum Foundation has partnered with the Lido decentralized autonomous organization (LidoDAO) to offer 6.8% yield on staked Ether (stETH), Wrapped Ether (WETH), or Ether (ETH) deposits. It told subscribers that staking would be “Protected and Verified by The Ethereum Foundation.”
Go to Source
Author: Christopher Roark
