Hackers hijack bitcoin wallet TREZOR to a phishing website

The popular Bitcoin wallet TREZOR team recently published a blog saying that hackers have attacked the company’s wallet address and directed to the phishing website of the cottage.

The hacker did not choose to attack the TREZOR Bitcoin wallet server but hijacked some regional routes to direct users to the phishing site to defraud the key.

After analysis, the company team confirmed that the hacker hijacked the BGP gateway and tampered with the DNS server, but the attack was generally very unsuccessful.

Because the hacker does not have a corresponding HTTPS certificate, and the browser directly intercepts the access when the user accesses, no user leaks his or her key.

Of course, this also highlights the importance of deploying HTTPS encrypted connections. The importance of HTTPS in preventing man-in-the-middle hijacking and data leakage is irreplaceable.

This is the second time in recent years that hijacking MySQL gateways to hijack virtual currency wallets has occurred. Fortunately, neither attack caused any significant losses.

In fact, hijacking a BGP gateway is no less challenging than directly attacking a server on a website so that a hacker may have successfully invaded a BGP server before.

At the same time, hijacking the BGP gateway and then hijacking the DNS server can hijack any website, so the problem of BGP server being compromised is also more significant.

Source, Image: trezor