What are the subjects of the phishing (domains, URLs or IPs)?
https://trezorsuite.ltd
What are the impersonated domains?
https://trezorsuite.ltd
Where or how did you discover this phishing?
URGENT: Phishing Report Bing Search - Impersonation of Trezor Wallet - https://trezorsuite.ltd
To whom it may concern,
I am writing to formally report a highly sophisticated phishing operation targeting users of the "Trezor Wallet" cryptocurrency software. The fraudulent site is currently indexed and easily discoverable via Bing Search, posing a severe risk to public financial security.
Malicious Domains:
https://trezorsuite.ltd (Main phishing landing page)
Nature of the Fraud:
These websites impersonate the official Ledger Wallet interface. Their sole purpose is to deceive users into entering their 12-word recovery phrases (seed phrases). Once entered, the private keys are exfiltrated, and the users' digital assets are stolen immediately.
Evasion Techniques (Cloaking):
You may notice that some automated scanners show "No Detections." This is due to an active cloaking mechanism implemented by the attackers. The site serves benign content or 404 errors to automated bots and non-targeted regions, while displaying the full phishing interface specifically to English-speaking users arriving from search engines
Do you have a screenshot?
Screenshot
Related external source
No response
Additional Information or Context
No response
What are the subjects of the phishing (domains, URLs or IPs)?
https://trezorsuite.ltd
What are the impersonated domains?
https://trezorsuite.ltd
Where or how did you discover this phishing?
URGENT: Phishing Report Bing Search - Impersonation of Trezor Wallet - https://trezorsuite.ltd
To whom it may concern,
I am writing to formally report a highly sophisticated phishing operation targeting users of the "Trezor Wallet" cryptocurrency software. The fraudulent site is currently indexed and easily discoverable via Bing Search, posing a severe risk to public financial security.
Malicious Domains:
https://trezorsuite.ltd (Main phishing landing page)
Nature of the Fraud:
These websites impersonate the official Ledger Wallet interface. Their sole purpose is to deceive users into entering their 12-word recovery phrases (seed phrases). Once entered, the private keys are exfiltrated, and the users' digital assets are stolen immediately.
Evasion Techniques (Cloaking):
You may notice that some automated scanners show "No Detections." This is due to an active cloaking mechanism implemented by the attackers. The site serves benign content or 404 errors to automated bots and non-targeted regions, while displaying the full phishing interface specifically to English-speaking users arriving from search engines
Do you have a screenshot?
Screenshot
Related external source
No response
Additional Information or Context
No response