Bitstamp has issued a warning to all users of their service, stating that trading will be stopped for a period of 24hrs after many of their users have received phishing emails.
The email in question, which has all the tell-tale signs of poor grammar and spelling, asks the recipient to open a poisoned PDF attachment in order to check their current balance on their on-line wallets at Bitstamp.
Anyone who receives this email, should first make sure that they do not attempt to open the malicious attachment, but simply delete the email. Users should also make sure that they have 2FA (Two-Factor Authentication) enabled on their Bitstamp account, as well as their email client and that their anti-virus is fully up to date. Only ever open attachments from people you know and trust.
To enable Two-Factor Authentication on your Bitstamp account, simply head to your Security area and enable it. The process is very straight forward and adds a much needed layer of security.
On a side note, I would also advise that people do not store their coins for longer than necessary on any online wallet, but instead keep them either on their desktop wallets, or in a Paper wallet. If you don’t know how to use a Desktop wallet for your coins, then see this guide for storing bitcoin (or other coins) on a desktop wallet.
How the people responsible managed to get the email addresses for Bitstamp users has yet to be addressed, but hopefully Bitstamp are not selling client email addresses to third parties. Bitstamp’s response to this phishing attempt though has been quick and ceasing trading for 24hrs is a wise move.
Thank you to bemodriver on reddit for the screen shot of the email.