A sophisticated phishing campaign is currently targeting hardware wallet users through traditional physical mail, marking a shift from digital-only scams to tangible social engineering. Scammers are sending counterfeit packages to individuals, often containing a fake ‘replacement’ hardware wallet accompanied by a professional-looking letter. These letters frequently use stolen customer data from previous third-party breaches to appear legitimate, claiming that the recipient’s current device is no longer secure due to a technical vulnerability. The provided ‘replacement’ device is typically a tampered hardware unit designed to intercept the user’s secret recovery phrase. Once a user initializes the fake device and enters their seed phrase, the attackers gain immediate and full access to the victim’s cryptocurrency assets. Security experts emphasize that reputable manufacturers never send unsolicited replacement hardware or request recovery seeds for any reason. Users are urged to remain vigilant, ignore unsolicited physical mail regarding their digital assets, and only communicate with wallet providers through official, verified channels.
Source: Hardware Wallet Owners Hit With Snail Mail Phishing Campaign
コメント