https://community.isc2.org/t5/Threats/PoisonSeed-phishing-campaign-behind-emails-with-wallet-seed/m-p/78724#M1584 <P>Hi All</P><P>&nbsp;</P><P>A large-scale phishing campaign dubbed 'PoisonSeed' compromises&nbsp;corporate email marketing accounts to distribute emails containing crypto seed phrases used to drain cryptocurrency wallets.</P><P>According<A href="https://www.silentpush.com/blog/poisonseed/" target="_blank" rel="nofollow noopener"> to SilentPush</A>, the campaign targets Coinbase and&nbsp;Ledger using compromised accounts at Mailchimp, SendGrid, HubSpot, Mailgun, and Zoho.</P><P>The researchers link the campaign to recent incidents, such as the case of <A href="https://www.troyhunt.com/a-sneaky-phish-just-grabbed-my-mailchimp-mailing-list/" target="_blank" rel="nofollow noopener">Troy Hunt's Mailchimp account</A> compromise from late last month&nbsp;and an <A href="https://www.bleepingcomputer.com/news/security/coinbase-phishing-email-tricks-users-with-fake-wallet-migration/" target="_blank" rel="nofollow noopener">Akamai SendGrid account hack</A> BleepingComputer reported in mid-March 2025, where the legitimate account was used to send out Coinbase seed phrase phishing emails.</P><P>&nbsp;</P><P><A href="https://www.bleepingcomputer.com/news/security/poisonseed-phishing-campaign-behind-emails-with-wallet-seed-phrases/" target="_blank">https://www.bleepingcomputer.com/news/security/poisonseed-phishing-campaign-behind-emails-with-wallet-seed-phrases/</A></P><P>&nbsp;</P><P>Happy reading - do you think cryptocurrency is still secure?</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Sat, 12 Apr 2025 04:02:58 GMT Caute_cautim 2025-04-12T04:02:58Z https://community.isc2.org/t5/Threats/PoisonSeed-phishing-campaign-behind-emails-with-wallet-seed/m-p/78724#M1584 <P>Hi All</P><P>&nbsp;</P><P>A large-scale phishing campaign dubbed 'PoisonSeed' compromises&nbsp;corporate email marketing accounts to distribute emails containing crypto seed phrases used to drain cryptocurrency wallets.</P><P>According<A href="https://www.silentpush.com/blog/poisonseed/" target="_blank" rel="nofollow noopener"> to SilentPush</A>, the campaign targets Coinbase and&nbsp;Ledger using compromised accounts at Mailchimp, SendGrid, HubSpot, Mailgun, and Zoho.</P><P>The researchers link the campaign to recent incidents, such as the case of <A href="https://www.troyhunt.com/a-sneaky-phish-just-grabbed-my-mailchimp-mailing-list/" target="_blank" rel="nofollow noopener">Troy Hunt's Mailchimp account</A> compromise from late last month&nbsp;and an <A href="https://www.bleepingcomputer.com/news/security/coinbase-phishing-email-tricks-users-with-fake-wallet-migration/" target="_blank" rel="nofollow noopener">Akamai SendGrid account hack</A> BleepingComputer reported in mid-March 2025, where the legitimate account was used to send out Coinbase seed phrase phishing emails.</P><P>&nbsp;</P><P><A href="https://www.bleepingcomputer.com/news/security/poisonseed-phishing-campaign-behind-emails-with-wallet-seed-phrases/" target="_blank">https://www.bleepingcomputer.com/news/security/poisonseed-phishing-campaign-behind-emails-with-wallet-seed-phrases/</A></P><P>&nbsp;</P><P>Happy reading - do you think cryptocurrency is still secure?</P><P>&nbsp;</P><P>Regards</P><P>&nbsp;</P><P>Caute_Cautim</P> Sat, 12 Apr 2025 04:02:58 GMT https://community.isc2.org/t5/Threats/PoisonSeed-phishing-campaign-behind-emails-with-wallet-seed/m-p/78724#M1584 Caute_cautim 2025-04-12T04:02:58Z https://community.isc2.org/t5/Threats/PoisonSeed-phishing-campaign-behind-emails-with-wallet-seed/m-p/78738#M1586 <P>A great read, thanks</P><P>&nbsp;</P><P>d</P> Sat, 12 Apr 2025 07:39:00 GMT https://community.isc2.org/t5/Threats/PoisonSeed-phishing-campaign-behind-emails-with-wallet-seed/m-p/78738#M1586 dcontesti 2025-04-12T07:39:00Z