NameCheap email hacked and sending Metamask, DHL phishing emails
Domain registrar Namecheap had its email account hacked on Sunday night, prompting a flood of MetaMask and DHL phishing emails attempting to steal recipients’ personal information and cryptocurrency wallets.
The phishing campaigns began around 4:30 p.m. and originated from SendGrid, an email platform previously used by Namecheap to send renewal notices and marketing emails.
After recipients began complaining on Twitter, Namecheap CEO Richard Kirkendall confirmed that the account had been hacked and that they had disabled email through SendGrid while they investigated the issue.
In addition, Kirkendall also said they believe the hack may be related to a CloudSek report in December about Mailgun, MailChimp and SendGrid API keys being exposed in mobile apps.