You are viewing a single comment's thread:
RE: This Fake Trezor Letter Was Good Enough To Fool A Lot Of People
Good post - thanks for the heads-up !
The question that jumped into my mind was where or how the scammers found a list of Trezor owners to send the letters to. It seems quite well targetted.
It might not be that Trezor themselves have had a data leak. I can see it as just as likely that the scammers paid some sap in a third world bank call centre who has never seen $10,000 before and doesn't make that in ten years. All they want is a list of debit or credit card payments where Trezor or SatoshiLabs have received funds, and the names and addresses of the card holders. Or perhaps it was an Amazon leak - or anywhere else you can buy the devices where a human can extract a list of customer names and addresses.
Makes me really curious because I have moved 4 times since I purchased that and switched banks about as many times... I am fairly certain I did get it from Amazon and they do have my current address, so it could have been a fairly recent data dump.
They could have also just grabbed any mailing list and sprayed them at random and hope for the best?
Your reply is upvoted by @topcomment; a manual curation service that rewards meaningful and engaging comments.