The main dishes to remember:
- The crooks send letters of false letters via USPS, urging crypto users to “validate” the wallets to fly private keys.
- Physical phishing tactics mark an only online attacks, which raises new concerns for the safety of cryptography.
- The false LEDGER LIVE applications target macOS users with trojanized malicious software designed to steal recovery sentences.
A new phishing scam targets crypto holders via traditional mail, crooks usurping the identity of a large portfolio portfolio book and sending false letters urging users to “validate” their portfolios or risk losing access to the funds.
The CEO of Bitgo, Mike Belshe, was among the first to report the attack, sharing an image of the fraudulent letter, which included a QR code – probably linked to a phishing site designed to steal private keys.
Crypto crooks turn to the USPS by switching to physical phishing attacks
The letters were reportedly delivered via the United States Postal Service (USPS), reporting a change in digital tactics to physical social engineering.
Troy Lindsey, another recipient of the letter, warned others on social networks: “They are all scams. Do not fall for any of them. ”
I have the same
Last week, I took and I had @grok analyze. These are all the scams do not fall for any of these elements !! pic.twitter.com/zfnpqpujqa
– Troy Lindsey (@Troyandolga) May 24, 2025
Last week, I took and I had The warning echoes increasing concerns concerning phishing patterns which take advantage of physical credibility to encourage crypto users to exhibit sensitive data.
The attack comes in the middle of an increase in phishing cases linked to the crypto. In April, $ 330 million in Bitcoin were stolen from an elderly victim, confirmed by Blockchain researcher Zackxbt.
He has linked crime to people operating from a Camden, the United Kingdom’s scam call center.
Meanwhile, Coinbase revealed earlier this month that it was the objective of a ransom attempt after customer support entrepreneurs disclosed the user data.
The attackers demanded $ 20 million, which the exchange refused to pay. While Coinbase said that no private key or access to the account was compromised, the disclosed data included names and contact details.
The founder of Techcrunch, Michael Arrington, criticized the exchange, warning that violations of this type could lead to real damage to exposed customers.
False lives live from the big book target macOS users
Last week, Cybersecurity Company Moonlock warned that a wave of malware attacks targeting macOS users exploits confidence in Ledger Live, a popular Crypto portfolio management app.
Moonlock warned that malicious actors use Ledger Live trojanized clones to encourage users to enter their recovery sentences thanks to convincing pop-ups.
“In a year, they learned to fly seed sentences and empty their victims’ portfolios,” said the team, noting a major development of the threat.
One of the main vectors of infection is the atomic macos thief, a tool designed to exfiltrate sensitive data such as passwords, notes and details of the cryptographic portfolio.
Moonlock discovered it integrated at least 2,800 compromise websites.
Once installed, the malware quietly replaces the Live Ledger application with a false that triggers false alerts to collect seed sentences.
At a time when a user enters their 24 -words recovery sentence in the bogus application, the information is sent to the servers controlled by the attacker.
Post fraudsters send false big book letters in the last scheme of cryptographic phishing appeared first on Cryptonews.
