Email marketing company Mailchimp confirmed that it faced a major cyber attack. Hackers have stolen data from more than 100 clients. Hackers have used the personal data to mount phishing attacks on the users of cryptocurrency platforms.
Mailchimp has 13 million users globally, 2.4 million monthly active users, and 800,000 paid customers; with 50 percent of customers outside of the U.S.
Trezor hardware cryptocurrency wallet, a user of Mailchimp, tweeted that they have been targeted by sophisticated phishing emails.
MailChimp have confirmed that their service has been compromised by an insider targeting crypto companies, said Trezor.
“We have managed to take the phishing domain offline. We are trying to determine how many email addresses have been affected,” Trezor posted. Trezor said it will not be communicating by newsletter until the situation is resolved.
The Mailchimp security team disclosed that hackers accessed an internal tool used by customer-facing teams for customer support and account administration. Hackers gained access to this tool as a result of a successful social engineering attack on Mailchimp employees.
“This attack is exceptional in its sophistication and was planned to a high level of detail. The phishing application is a cloned version of Trezor Suite with very realistic functionality, and also included a web version of the app,” said Trezor, a cryptocurrency wallet.
Mailchimp CISO Siobhan Smyth said that the company had become aware of the breach on March 26 when it detected unauthorised access of a tool used by the company’s customer support and account administration teams, The Verge reported.
“The hackers were able to view around 300 Mailchimp user accounts and obtain audience data from 102 of them,” Siobhan Smyth said.
Intuit, the technology platform that makes TurboTax, QuickBooks, Mint, and Credit Karma, in Sept 2021 announced the acquisition of Mailchimp, for approximately $12 billion in cash and stock.