28.9 C
San Juan
Monday, March 9, 2026
HomeEthereum
Ethereum

weblog.ethereum.org mailing listing incident | Ethereum Basis Weblog

By INTERACTIVELINK
0
60
weblog.ethereum.org mailing listing incident | Ethereum Basis Weblog


On 2024-06-23, 00:19 AM UTC, a phishing e-mail was despatched out to 35,794 e-mail addresses by updates@weblog.ethereum.org with the next content material

Customers who clicked the hyperlink within the e-mail had been despatched to a malicious web site:

This web site had a crypto drainer working within the background, and if a person initiated their pockets and signed the transaction requested by their web site their pockets would have been drained.

Our inner safety staff instantly launched an investigation to assist decide who launched the assault, what the purpose of the assault was, when it occurred, who was affected, and the way it occurred.

A number of the intial actions taken had been:

  • Prevented the menace actor from sending extra emails.
  • Despatched out notifications by way of twitter and e-mail to not click on the hyperlink in query.
  • Closed down the malicious entry path the menace actor had used to acquire entry into the mailing listing supplier.
  • Submitted the malicious hyperlink to numerous blacklists, and it was then blocked by majority of web3 pockets suppliers and cloudflare.

Our investigation into the assault confirmed that:

  • The menace actor imported a big e-mail listing of their very own into the mailing listing platform for use for the phishing marketing campaign.
  • The menace actor exported the weblog mailing listing e-mail addresses, which was a complete of 3759 e-mail addresses.
  • After we in contrast the emails within the e-mail listing that the menace actor had imported, we may see that the weblog mailing listing contained 81 e-mail addresses that the menace actor didn’t beforehand have information of, and the remainder had been duplicate addresses.
  • Analyzing on-chain transactions made to the menace actor between the time they despatched out the e-mail marketing campaign and the time the malicious area received blocked, seem to point out that no victims misplaced funds throughout this particular marketing campaign despatched by the menace actor.

As we proceed engaged on this incident, we’ve got taken extra measures akin to migrating some mail providers to different suppliers, to additional assist cut back the chance of this occurring once more.

We’re deeply sorry that this incident occurred, and are working diligently with each our inner safety staff in addition to exterior safety groups to additional assist deal with and examine this incident.

Any questions might be directed to safety@ethereum.org.

Previous articleWho’s Michael Selig? Trump nominates pro-crypto lawyer to go CFTC
Next articleHas Mastercard accepted the inevitability of crypto? Spends $2B on tokenization platform
INTERACTIVELINK

Related Articles

Stay Connected

0FansLike
0FollowersFollow
0SubscribersSubscribe
- Advertisement -spot_img

Latest Articles

Load more

ABOUT US

Coinnewstimes is your Cryptocurrency, Crypto Mining, Bitcoin, Altcoin, Litecoin, Credit Card, Forex, Ethereum, Peer to Peer Lending, Credit Card and Jasmy related news website. We provide you with the latest breaking news and videos straight from the trade industry.

Copyright © 2025 - coinnewstimes.com. All rights reserved.