威胁分析师已经发现了一项针对加密货币行业内部和外部受害者的复杂，两管齐的恶意软件。

在最近的一份报告中，网络情报公司无声推动确定了毒害的恶意软件活动，该活动最初针对了众多电子邮件提供者的用户，包括邮寄和sendgrid copie nopgrid and sendgrid and page a page。图像：在一种情况下，默默推送

在一种情况下，向一个欺诈性消息发送了一条欺诈性消息，声称其帐户已受到限制 - 他们被欺骗，通过虚假，但“ Pixel-Perfect”网站提供其登录详细信息。

从这里开始，他们的邮件列表被下载在集群下，这是无声推动描述为“非常快速且有可能自动化的过程。”

下一步看到毫无戒心的订户发送电子邮件，声称是来自加密货币的电子邮件交换Coinbase声称交换是“过渡到自我监测的钱包”。

提供了一个12字的种子短语，骗局的受害者被告知要进口到他们的帐户中，但是这样做会使恶意演员自由地将所有的加密货币从钱包中散发出来。 Image: Silent Push

One of the Mailchimp customers affected, Microsoft regional director Troy Hunt, said he received the phishing email when he was "really jet lagged and really tired," leaving him vulnerable.

Although the penny dropped that something wasn't right immediately after he entered his login details—and he promptly changed his password—the mailing list had already been exported.

"Reading it again now, that's a very精心制作的网络钓鱼，”亨特写道。 “这使我在社交上相信我将无法发送我的新闻通讯o它引发了“恐惧”，但如果我不立即采取行动，那并不是所有的钟声和哨声。 It created just the right amount of urgency without being over the top."

Silent Push said that it is treating PoisonSeed as being distinct from two "loosely aligned threat actors" called Scattered Spider and CryptoChameleon—despite the fact these campaigns use similar phishing domains, and have targeted Coinbase and Ledger users in the past.

It's a sobering illustration that it isn't just consumers who need面对社会工程骗局，请保持警惕，但还为他们的新闻通讯吸引了大量观众的创作者。