The official account of Trezor, a renowned hardware wallet manufacturer, has been compromised. The account has been used to publish a series of malicious posts promoting fraudulent presale token offerings.
Details of the Breach
The breach was first brought to light by independent blockchain investigator ZachXBT, who alerted his 528,000 followers on March 19. Shortly after, Scam Sniffer, a crypto security service, also flagged the suspicious activity.
Fraudulent Token Offerings
The compromised Trezor account was used to promote a fake “$TRZR” presale token on the Solana networks. Users were asked to send funds to a specific Solana wallet address and were provided with links that led to wallet drainers.
ZachXBT reported that the hacker managed to steal approximately $8,100 from Trezor’s Zapper account. He commented, “Imagine hacking the Trezor account only to steal $8.1K (includes 25% drainer fee).”
Additional Malicious Activity
The hacker also made references to a new memecoin on Solana named Slerf, presumably to increase engagement. However, these posts were quickly removed minutes after being uploaded.
Reactions to the Breach
John Holmquist, a crypto commentator, described Trezor’s latest incident as a significant loss. He criticized the hardware wallet manufacturer for presumably not using two-factor authentication (2FA) to secure its account, urging them to “Please take account security more seriously.”
Other users, such as Pledditor, found it ironic that a company focused on security couldn’t secure its own social media account. DigitalHustlerX added, “It’s hard, funny, and shameful at the same damn time” that they don’t take their advice.
Trezor’s History
This is not the first time Trezor has faced security issues. In January, the company suffered a breach that exposed the contact information of nearly 66,000 users.
Since its launch in 2012, Trezor has sold over 2 million hardware wallets to customers. The firm currently offers three products that can collectively store more than 9,000 coins offline for users.