By breaching the email server, Celsians become the target of phishing attacks


Crypto asset lending platform, Celsius Network, has revealed an email server breach that led to malicious phishing links being sent to customers.

An April 15 announcement notes that some Celsius customers have received emails and text messages directing them to a malicious website masquerading as the Celsius platform. The reports claim the link would lead them to a new Celsius web wallet, claiming to offer $ 500 to users who create wallets using the link.

Phishing Email Sent to Celsius Users: Reddit

Celsius claims the phishing links were sent after “an unauthorized party managed to gain access to a third-party email distribution backup system that had connections to a partial customer email list” – turning malicious actors onto users could target with the phishing attempt.

Opening the fraudulent link will prompt the user to put the seed phrase in their personal wallet, allowing hackers to wiretap their funds.

While the team claims it was able to respond quickly and minimize the impact on its users, a thread on Reddit suggests that at least $ 300,000 worth of cryptocurrency has been stolen from Celsius’ customers, with a forum visitor, “VaporFye”, who claims lost 20 Ether ($ 50,000) to the scammer.

Celsius CEO and founder, Alex Mashinksy, sought to assure the community that “Celsius remains completely safe” and that its systems have “not been compromised in any way.”

“Customer money and sensitive data are safe within our back-end systems, and our security team has done a fantastic job identifying the situation and providing the Celsius community very quickly with the steps and precautions to follow.”

The announcement notes that Celsius’ team is still actively investigating how the unauthorized actor could gain access to his remote email system.

“We know that customers who did not register an email or phone number with Celsius also received fraudulent messages with these contact details, so we believe the data was collected from external data sources,” the message added.

The email breach occurred the day after Celsius’ native CEL token was listed for trading on the major OKEx exchange.

Despite the incident, the price of CEL has risen nearly 1% in the past 24 hours and has risen 50% in the past two weeks. Cell last changed hands for $ 7.03, according to CoinGecko.