Oddbean new post about | logout
Lou | 8 months ago (raw) | root | parent | reply | flag +1 
 Sometimes they write about a leaked seed phrase
nostr.build | 8 months ago (raw) | root | parent | reply | flag +1 
 How did they spoof the email??..
Lou | 8 months ago (raw) | root | parent | reply | flag +1 
 My email is everywhere so shouldn’t be hard to find on some random list in the clearnet. 

But sometimes if you’re email got leak by a random company once, it is easy for phishers to buy the info in the darkweb 

I’ve my email since the dawn of time so it has been leak a bunch. 

As far as yours goes… good question. Try https://haveibeenpwned.com and see if it got leaked. If it did I’m assure you has been compromised forever
Lou | 8 months ago (raw) | root | parent | reply | flag +1 
 Mine has been leaked 7 times, one of those from Xitter 🤦🏻‍♂️🤣 https://i.nostr.build/6o8v.jpg
nostr.build | 8 months ago (raw) | root | parent | reply | flag 
 Sure, all of us so many times, but how did they make it look like it was from Trezor, how did they spoof noreply@trezor.io?

Just read their blog, seems someone got access to their support portal, but could they send emails form it?!?
Weird..

I ordered a Trezor years ago and never used it or the support portal 🤷‍♂️
10Luno | 8 months ago (raw) | root | parent | reply | flag 
 Have you checked the email in raw form? Most email clients allow you to inspect these email headers. Track back from the email body to the first ip address you get then `whois` that to find where it has come from.
nostr.build | 8 months ago (raw) | root | parent | reply | flag +1 
 Let me look