What is the Blockstream phishing scam about?

The scam involves fake emails posing as firmware updates for Jade hardware wallets, tricking users into downloading malicious files.

Was Blockstream compromised?

No, Blockstream confirmed its systems were not compromised. The scam was external and targeted users directly.

How can users protect themselves from such scams?

Users should only download firmware updates from official sources, never trust files sent via email, and verify communication channels before taking action.

Blockstream Sounds Alarm on Fake Phishing Email Scam

Ronny Mugendi

September 13, 2025

Last Updated: September 29, 2025

Blockstream Warns Users About Phishing Email Scam: Details

Blockstream, a leading infrastructure and hardware wallet provider, has warned against a phishing email scam targeting Jade hardware wallet users. The platform urged clients to stay vigilant, asserting that it never sends firmware files via email.

Blockstream Phishing Attack: Details

Earlier today, Blockstream took to X to direct the community’s attention to a phishing email scam that targets Jade hardware wallet users. While the company asks customers to stay alert, it assures that no data has been compromised. The platform wrote on an X post, “Our systems were not compromised.”

Bitcoin developer Jimmy Song was among the first to flag the malicious emails, which masquerade as Jade firmware updates and trick users into downloading files from dubious domains. He said, “You guys should warn people about this phishing email. I'm guessing the firmware sends funds to some other address.”
Blockstream

The scam messages, which seemingly originate from unrelated sources like restaurant managers, raise concerns about how attackers accessed the email addresses of potential victims.

Notably, this alert comes during a significant rise in crypto phishing attacks. Losses in August reached $12 million. Over 15,000 victims were affected, marking a shocking 67% increase from July. These exploits trick users by placing harmful links in messages that look legitimate, claiming to come from well-known crypto companies. Their goal is to steal sensitive information.

Among the major incidents in August were the Venus Protocol and Binance scams. According to Coin Gabbar, the Venus Protocol attack resulted in a massive loss of $13.5 million in wrapped Bitcoin (BTCB), vUSDT, vUSDC, vXRP, and vETH.However, soon, the BNB Chain-linked lending firm announced the successful recovery of the stolen tokens.

In another similar incident, a Binance user lost $91 billion in Bitcoin to a sophisticated social engineering attack. In response to the increasing attacks targeting Binance customers, CEO Richard Teng issued a warning that read,

“Ring, ring! Could be a scam. We've seen a new scam: fake support calls trying to get you to change your API. Remember, we'll never ask for your passwords or credentials over the phone.”

In the first half of 2025, cryptocurrency users lost over $3.1 billion to scams and hacks. This amount is a significant increase from 2024. This rise shows that the threats in the cryptocurrency space are growing. Scams and hacking incidents are becoming more advanced.

About the Author Ronny Mugendi

Technical Analyst at coingabbar.com

Ronny Mugendi is an experienced crypto journalist with four years of professional expertise, having made substantial contributions to multiple media platforms covering cryptocurrency trends and innovations. With more than 4,000 published articles to his name, he is dedicated to informing, educating, and bringing more people into the world of Blockchain and DeFi. Beyond his journalism work, Ronny finds excitement in bike riding, enjoying the adventure of exploring fresh trails and landscapes.