MailerLite, an email service provider, recently fell victim to a targeted phishing attack that focused specifically on the crypto market. The breach, disclosed by the company to Decrypt, unfolded when a support team member inadvertently clicked on a deceptive link, entered their Google credentials, and completed a second-factor challenge. This unfortunate sequence of events granted unauthorized access to MailerLite’s internal system.
Once inside, the attackers executed a password reset for a specific user on the admin panel, thereby solidifying their control. MailerLite reported that the intruders, with this high level of access, were able to impersonate user accounts, concentrating their efforts exclusively on cryptocurrency-related profiles. A total of 117 accounts were compromised, leading to the unauthorized use of some accounts to launch phishing campaigns.
Affected accounts included prominent names in the crypto space such as CoinTelegraph, Wallet Connect, Token Terminal, and De.Fi, according to internet investigator ZachXBT. Decrypt, a leading crypto news platform, was also among the affected entities, though MailerLite assured that no emails were sent from its system, and the contacts list remained secure.
The attackers, exploiting the trust associated with MailerLite’s templates, successfully stole over $580,000, as revealed by ZachXBT. However, web3 security firm Blockaid estimated the total amount at over $600,000.
Crypto Training Boost: MailerLite Enhances Security Protocols
Upon discovering the breach, MailerLite promptly took action to identify and resolve the issue, putting an end to the access method used by the perpetrators. The company assured users that the breach has been fully stopped, and they are actively monitoring the situation. In response to the incident, MailerLite is committed to implementing necessary changes to internal processes, emphasizing employee adherence to security protocols, and enhancing security training across the organization.
This incident serves as a stark reminder of the vulnerabilities in the cryptocurrency space and the importance of robust cybersecurity measures to protect against targeted attacks. As the crypto market continues to grow, such incidents underscore the need for heightened awareness and security diligence from all stakeholders involved.