"DHL, MetaMask Phishing Emails Target Namecheap Customers"

Namecheap customers' inboxes have recently been hit with phishing emails mimicking DHL and MetaMask, seeking to trick recipients into divulging personal information or their cryptocurrency wallet's secret recovery phrase. The emails appear to have been sent by Namecheap, causing recipients to file complaints with the company, which then launched an investigation and stopped all emails. Namecheap stated that their own systems were not compromised and attributed the spam campaign to an upstream third-party system used to send emails. Namecheap delivers its emails via the cloud-based platform SendGrid, which is owned by Twillio. Twillio is also conducting an investigation, but claims that their network has not been infiltrated. Therefore, everything currently leads to Namecheap's SendGrid account being compromised. This article continues to discuss the phishing campaign involving the impersonation of DHL and MetaMask. 

Help Net Security reports "DHL, MetaMask Phishing Emails Target Namecheap Customers"