Crypto News – The phishing email scams that depleted subscribers’ accounts for an estimated $3.3 million were carried out by hackers who obtained access to the accounts of major Web3 companies, according to email marketing company MailerLite.
3.3 Million Dollar MailerLite Crypto Phishing Attack Confirmed by Company
Only a few Web3 businesses, including Cointelegraph, were attacked on January 23. WalletConnect, Token Terminal, and De.Fi official accounts have sent emails with malicious links that include wallet-draining software. MailerLite disclosed information about how their system was breached using a social engineering assault that targeted a customer care agent, just hours after the emails had been distributed to subscribers.
The team member, responding to a customer inquiry via our support portal, clicked on an image that was deceptively linked to a fraudulent Google sign-in page,
Attackers Gained Access to 117 Accounts
The attackers then gained access to MailerLite’s internal admin panel when the employee unintentionally authenticated. By using the admin panel to reset a particular user’s password, the hackers were able to take additional control.
With this level of access, they were able to impersonate user accounts. The focus was exclusively on cryptocurrency-related accounts.the statement
According to MailerLite, although the hackers gained access to 117 accounts, they only used a small portion of them to start phishing activities. The service provider issued a warning, stating that data belonging to its users and clients, including complete names, email addresses, and private information posted to MailerLite, was compromised.