Mailer Lite falls victim to a hack:
- An individual managed to exploit a vulnerability on the Mailer Lite platform.
- Targeted companies include CoinTelegraph, WalletConnect, Token Terminal, and De.Fi, with a total loss exceeding $600,000.
- The attack used previously associated ‘suspended’ DNS records from Mailer Lite.
Details of a Hack Over $600,000
A hacker recently exploited a vulnerability within the Mailer Lite platform, allowing for the creation of marketing campaigns for businesses, resulting in a financial loss of several hundred thousand dollars.
Pretending to be legitimate cryptocurrency companies, the attacker sent emails that appeared authentic and trustworthy, but actually contained links to fraudulent websites. This phishing method targeted notable companies such as CoinTelegraph, WalletConnect, Token Terminal, and De.Fi.
The Ingenious Method of Attackers
The perpetrator employed a technique known as ‘dangling DNS records,’ which involved exploiting inactive DNS records of the targeted companies that were still associated with Mailer Lite. These records were previously used by the targeted companies, enabling the attacker to impersonate these companies and create convincing emails that appeared to come from them.
After the closure of their accounts, these DNS records remain active, giving attackers the opportunity to claim and impersonate these accounts.
stated analysts at Blockaid
This tactic not only deceived recipients but also bypassed standard security measures, making the attack particularly insidious.
The impact of this phishing attack goes beyond the immediate financial loss of over $600,000. Furthermore, this attack raises major concerns about the security of digital communications in the cryptocurrency ecosystem. Businesses and individual users must be extremely vigilant against such tactics, always verifying the authenticity of received communications.
Additionally, this attack serves as a reminder to users of the importance of never clicking on unverified links, even if they appear to come from trusted sources.