Trezor web wallet falls under URL attack

The Trezor online wallet is vulnerable to attack. The wallet's web version was attacked by a fake URL and tried to steal phrases. Fake Trezor wallets have been a threat for a long time but new variants are constantly appearing. CTO of Casa advised not to visit Trezor's wallet by typing the URL and instead bookmark the URL.

Many from the crypto community on Reddit revealed that if they make even a small typo, they are redirected to a fake website impersonating Trezor. The wallet claims that an updated is needed to the firmware as an excuse to ask for the speed phrase and then steal all funds from the wallet. 

CTO of Casa, Jameson Lopp tweeted that the best way to access the web wallet is by visiting it via the bookmarked version of the online wallet. These fake URL websites claiming to be real have been around for a while, but they are continually growing. 

It is highly advised to double-check the website on which you have landed before making any transaction or writing passwords. A victim to the attack reported on Reddit that he typed “tezor.io” instead of trezor.io and was instantly redirected to a fake website. The scam website installed a compromised firmware on the device. 

ADVERTISEMENT
Alexander Aryan
Alexander Aryan
After completing his Masters in Business Administration and Management from the California State University, Alexander dedicated his life into studying and writing about bitcoin and the technology behind it as he believes it to be the money of the future. Apart form being a writer, Alex is also a great speaker and loves to participate in blockchain events.

1 comment

  1. Eo.finance est une bonne sécurité, une interface Web et mobile facile à utiliser, une entreprise connue et fiable, un débutant convivial, gratuit.

Leave a reply

Please enter your comment!
Please enter your name here