Vigilance on your e-mails! – Hacking and fraud attempts via Phishing (phishing) are unfortunately commonplace in the cryptosphere. Whether Ripple (XRP) and Binance are regular targets of this type of attack, this time it is the metaverse crypto project The Sandbox (SAND) who was a victim. This phishing would have been allowed following a security breach.
A data leak that occurred via an employee’s computer
Cryptocurrencies are highly covetedincluding by people malicious. Hackers and scammers of all kinds do not hesitate to harness the enthusiasm crypto-investors to hijack their valuable digital assets.
This Thursday, March 2, 2023, the teams of The Sandbox published an alert on a “security incident”. According to the press release, a “unauthorized third party” allegedly managed to gain access to the computer of one of the employees of the crypto project. He would then have used the personal data found to send e-mails de phishing allegedly on behalf of The Sandbox.
“On February 26, 2023, we learned that an unauthorized third party gained access to a The Sandbox employee’s computer. This allowed this third party to access a number of email addresses to which it then sent an email (…) titled “Access to The Sandbox Game (PURELAND)”, which contained hyperlinks to software malware that may have the ability to remotely install other malware on a user’s computer (…). »
>> During the crypto winter, take advantage of low prices, register on eToro (commercial link) <<
Fortunately, as explained in the press release from the SAND metaverse teams, the breach was quickly spottedand reduction measures were taken in stride. An email reporting the attack phishing message was sent to users whose email address could have been exploited by the hacker.
“Quickly after discovering the unauthorized access, The Sandbox emailed the known recipients of the bogus email [de phishing] to inform them that it was unauthorized and instruct them not to open, play or download anything from the hyperlinked website. We blocked the employee’s accounts and access to The Sandbox, reformatted his laptop, and reset all associated passwords. (…). »
For now, apart from email addresses, no other data seems to have leaked. Also, aside from this phishing attack, The Sandbox has no “no other impacts identified” following this security breach.
If the metaverse project seems to have limited breakage as much as possible, distrust is always in order when you receive an e-mail concerning cryptos. The sender’s email address and misspellings in the body of the message are often warning signs to prevent phishing. This new phishing attack follows the one, barely a fortnight ago, concerning the Namecheap hosting service and MetaMask wallet. Stay vigilant!
Hacks are unfortunate hazards, but not inevitable. Any investment involves risk. As a well-informed investor, have you done your own research and decided to take the plunge? Current prices are an opportunity to add a few satoshis to your wallet! To do this, register on eToro (lien commercial).