Took some time with 300 accounts being compromised and getting personal information through them. Used social engineering and hit client Trezor. Here a corporate policy that recommends exactly what they are hit with.
Took some planning:
“The phishing application is a cloned version of Trezor Suite with very realistic functionality, and also included a web version of the app,” the crypto wallet company wrote in a blogpost.”
As usual, some irony dripping off this one when compared to the recommendations on their site help:
“You received an unexpected email from Mailchimp staff or service teams. This may include forgot username emails or password reset emails you didn’t request…For an extra layer of security, we encourage you to set up two-factor authentication with SMS or a two-factor authentication app”
https://mailchimp.com/help/i-think-my-account-has-been-compromised/