Close Menu

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    Prediction market Kalshi faces legal scrutiny yet again

    July 1, 2026

    MicroStrategy abandons MSTR dilution promise after mNAV drop

    July 1, 2026

    blog.ethereum.org mailing list incident | Ethereum Foundation Blog

    July 1, 2026
    Facebook X (Twitter) Instagram
    Cryptify Now
    • Home
    • Features
      • Typography
      • Contact
      • View All On Demos
    • Typography
    • Buy Now
    X (Twitter) Instagram YouTube LinkedIn
    Cryptify Now
    You are at:Home » blog.ethereum.org mailing list incident | Ethereum Foundation Blog
    Ethereum

    blog.ethereum.org mailing list incident | Ethereum Foundation Blog

    Olivia MartinezBy Olivia MartinezJuly 1, 2026No Comments2 Mins Read
    Facebook Twitter Pinterest LinkedIn Tumblr Email
    Share
    Facebook Twitter LinkedIn Pinterest Email


    On 2024-06-23, 00:19 AM UTC, a phishing email was sent out to 35,794 email addresses by [email protected] with the following content

    Users who clicked the link in the email were sent to a malicious website:

    This website had a crypto drainer running in the background, and if a user initiated their wallet and signed the transaction requested by their website their wallet would have been drained.

    Our internal security team immediately launched an investigation to help determine who launched the attack, what the aim of the attack was, when it happened, who was affected, and how it happened.

    Some of the intial actions taken were:

    • Prevented the threat actor from sending additional emails.
    • Sent out notifications via twitter and email to not click the link in question.
    • Closed down the malicious access path the threat actor had used to obtain access into the mailing list provider.
    • Submitted the malicious link to various blacklists, and it was then blocked by majority of web3 wallet providers and cloudflare.

    Our investigation into the attack showed that:

    • The threat actor imported a large email list of their own into the mailing list platform to be used for the phishing campaign.
    • The threat actor exported the blog mailing list email addresses, which was a total of 3759 email addresses.
    • When we compared the emails in the email list that the threat actor had imported, we could see that the blog mailing list contained 81 email addresses that the threat actor did not previously have knowledge of, and the rest were duplicate addresses.
    • Analyzing on-chain transactions made to the threat actor between the time they sent out the email campaign and the time the malicious domain got blocked, appear to show that no victims lost funds during this specific campaign sent by the threat actor.

    As we continue working on this incident, we have taken additional measures such as migrating some mail services to other providers, to further help reduce the risk of this happening again.

    We are deeply sorry that this incident occurred, and are working diligently with both our internal security team as well as external security teams to further help address and investigate this incident.

    Any questions can be directed to [email protected].



    Source link

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
    Previous ArticleCiti cuts Bitcoin and Ether targets as ETF outflows deepen
    Next Article MicroStrategy abandons MSTR dilution promise after mNAV drop
    Olivia Martinez

    Related Posts

    Ethereum Protocol Attackathon in Collaboration with Immunefi

    July 1, 2026

    Devcon 2024 updates – Secure your tickets, apply to speak, and get involved!

    July 1, 2026

    The ethereum.org Translatathon is back

    July 1, 2026
    Leave A Reply Cancel Reply

    Top Posts

    Toward a 12-second Block Time

    May 2, 2026

    Tornado Cash still laundering funds as founder Roman Storm stands trial

    May 2, 2026

    SEC schedules CLARITY Act roundtable in May

    May 2, 2026

    Background on the mechanics of the ether pre-sale

    May 2, 2026
    Don't Miss

    Prediction market Kalshi faces legal scrutiny yet again

    By James WilsonJuly 1, 2026

    Prediction market platform Kalshi is facing legal pressure on two fronts, with a Michigan judge…

    MicroStrategy abandons MSTR dilution promise after mNAV drop

    July 1, 2026

    blog.ethereum.org mailing list incident | Ethereum Foundation Blog

    July 1, 2026

    Citi cuts Bitcoin and Ether targets as ETF outflows deepen

    July 1, 2026
    Stay In Touch
    • Facebook
    • Twitter
    • Pinterest
    • Instagram
    • YouTube
    • Vimeo

    Subscribe to Updates

    Get the latest creative news from SmartMag about art & design.

    Demo
    About Us
    About Us

    CryptifyNow: Your daily source for the latest insights, news, and analysis in the ever-evolving world of cryptocurrency.

    X (Twitter) Instagram YouTube LinkedIn
    Our Picks

    Prediction market Kalshi faces legal scrutiny yet again

    July 1, 2026

    MicroStrategy abandons MSTR dilution promise after mNAV drop

    July 1, 2026

    blog.ethereum.org mailing list incident | Ethereum Foundation Blog

    July 1, 2026
    Lithosphere News Releases

    This feed has expired. Please contact us for pricing options.

    May 5, 2026
    Copyright © 2026

    Type above and press Enter to search. Press Esc to cancel.