Mailer Lite hacker impersonates crypto firms, draining $600,000 with phishing emails

Crypto Ecosystems • January 23, 2024, 5:03PM EST
Published 1 minute earlier on
The Block

Quick Take

  • An exploiter abused a vulnerability in a digital marketing platform to mimic seemingly legitimate emails that actually included links to wallet drainer sites, Blockaid found. 
  • The attack targeted CoinTelegraph, WalletConnect, Token Terminal and De.Fi, according to crypto sleuth ZachXBT.

Digital marketing platform Mailer Lite was the victim of a phishing attack that resulted in the loss of over $600,000, according to the web3 security and privacy firm Blockaid. 

The exploiter used a vulnerability in Mailer Lite to mimic web3 firms sending seemingly legit emails that actually contained malicious links to wallet drainer sites, Blockaid explained in a social media thread Tuesday, adding that "attackers took advantage of the fact that Mailer Lite had previously been given permission to send email on behalf of these site’s domains, enabling them to craft emails that seemed to be coming from these organizations."

"Specifically, they used 'dangling dns' records which were created and associated with Mailer Lite (previously used by these companies)," it continued. "After closing their accounts these DNS records remain active, giving attackers the opportunity to claim and impersonate these accounts."

THE SCOOP

Keep up with the latest news, trends, charts and views on crypto and DeFi with a new biweekly newsletter from The Block's Frank Chaparro

By signing-up you agree to our Terms of Service and Privacy Policy
By signing-up you agree to our Terms of Service and Privacy Policy

CoinTelegraph, WalletConnect, Token Terminal and De.Fi were among the platforms targeted by the phishing attack, according to the crypto sleuth ZachXBT.


Disclaimer: The Block is an independent media outlet that delivers news, research, and data. As of November 2023, Foresight Ventures is a majority investor of The Block. Foresight Ventures invests in other companies in the crypto space. Crypto exchange Bitget is an anchor LP for Foresight Ventures. The Block continues to operate independently to deliver objective, impactful, and timely information about the crypto industry. Here are our current financial disclosures.

© 2023 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.

About Author

MK Manoylov has been a reporter for The Block since 2020 — joining just before bitcoin surpassed $20,000 for the first time. Since then, MK has written nearly 1,000 articles for the publication, covering any and all crypto news but with a penchant toward NFT, metaverse, web3 gaming, funding, crime, hack and crypto ecosystem stories. MK holds a graduate degree from New York University's Science, Health and Environmental Reporting Program (SHERP) and has also covered health topics for WebMD and Insider. You can follow MK on X @MManoylov and on LinkedIn.

Editor

To contact the editor of this story:
Nathan Crooks at
[email protected]

More by MK Manoylov