<ul><li>Hackers are stealing mailing lists from major companies and using them to break into people’s cryptocurrency wallets.</li><li>They set up spoofed landing pages and impersonate companies like Coinbase, Ledger, Mailchimp, etc., to harvest login credentials and mailing lists.</li><li>The hackers then send emails urging users to set up a new Coinbase Wallet using a seed phrase embedded in the email, and once users set up the wallet and transfer funds, the hackers can steal the money.</li><li>The campaign, called PoisonSeed, is reportedly the work of threat actors called Scattered Spider and CryptoChameleon, and victims may permanently lose their funds.</li></ul>

PoisonSeed campaign hijacks business CRM and email accounts to send out huge amounts of spam

Discover more