So far via the registrar, we were able to deactivate and then take possession of the http://secure-blockstream.com domain, which was implicated in the phishing efforts.

Our team is currently investigating the source of this data to assess whether additional information has been compromised.

Preliminary results are inconclusive, as we've encountered examples that don't match any specific data set.

If you've received such a phishing email, it would be helpful if you would please forward it and any information you think maybe relevant to support@blockstream.com