Subnostr

Security alert from Trezor

Their support ticket system got hacked (they use a 3rd party system) and email addresses and names/nicks may have leaked.

Source: my inbox

This is why they should #SelfHost their systems. I am confident they care more about an incident than any company who would host a ticketing system for them.

They did seem to do reasonably well as minimizing the amount of data collected. If you are going to provide customer support, you need some way to get in touch, and email is pretty reasonable. Having a nick for what the customer wants to be called is also pretty reasonable. I have to wonder how many of those names/nicks were "Satoshi".

Reply to this note

Please Login to reply.

Discussion

Dr. Hax 2y ago

What you can do about this:

- don't fall for phishing scams

- that's about it, sadly

Some things you can do in the future:

- Use a unique email address everywhere

- Use different nyms for things like this

- Do a group buy so they only have one person's info

- Build your own #Trezor (protip: it'll be expensive)

- Combine the two points above and do a group buy to have someone build multiple trezors!

nostr:nevent1qqspg3t0ex4xmvw7z5c38t0nuz8k0wapmmj3e3hhqcqt5r0d29zcxmspz3mhxue69uhhyetvv9ujumn0wd68ytnzvupzp5cw4x82vh5487g6hylkkv82284n83gxlp75nasq5yu6auq249g3qvzqqqqqqy55hyv8

#infosec #cyber #CyberSecurity #security #CyberSec