Staus
Many or all Decentraland users' email addresses may have been acquired by malicious actors due to a Mailchimp data breach.
All users should stay alert as malicious hacker may use it to try to send you emails impersonating the Decentraland Foundation.
NEVER download anything directly from an email
The Decentraland Foundation will never attach files to an email for you to download or ask you to download anything directly from an email.
If we have something for you to download (such as our upcoming Desktop Client beta), we will direct you to decentraland.org for your safety first.
CHECK THE URL of the page the link takes you to
If you click on a link in an email, CHECK THE URL of the page the link takes you to.**
Make sure that the URL always ends with ‘decentraland.org’.
Always check that ‘decentraland’ is spelled correctly and that it ends in ’.org’ before taking any action on the webpage if you were directed there by a link.
.png)
Bookmarking
You can make your verification process easier by bookmarking any Decentraland pages you access frequently.
If you’re on a page that you think may be impersonating a Decentraland page (one that you had previously bookmarked), you can check to see if the bookmark star in the right corner of your search bar is highlighted, indicating if you’re on the real Decentraland page
.png)
The root cause of this breach
Mailchimp, the service that the Decentraland Foundation uses for sending out newsletters, was compromised on March 24 in a targeted attack against certain accounts that appear to all be related to the cryptocurrency industry.
Source: Decentraland
All databases will be hacked. This is why I don't understand why these companies still force us to fill out these forms asking for all our personal details. A lot of them don't even use a sophisticated security system - just a glorified Excel file.