Back Issues This Week → Calendar → Current Issue → Popular →

All issuesVolume 338, Issue 2IT Vendor NewsTrend Micro

The Robinhood Impersonation Scam That We Should All Pay Attention To

TrendLife Blog, Wednesday, May 13th, 2026

Attackers exploited a Robinhood vulnerability to send fraudulent security alerts and steal cryptocurrency from thousands of users.

A sophisticated phishing campaign in April 2026 exploited a Robinhood account creation vulnerability to inject fake security alerts into emails sent directly from Robinhood's servers, making them bypass all technical security checks.

The scam included spoofed text messages, emails, and AI-powered voice calls impersonating Robinhood support, directing victims to fraudulent sites where they transferred cryptocurrency that could not be recovered. Robinhood patched the vulnerability on April 28, 2026, but the tactics used remain common in impersonation scams.

Users should watch for urgency, unknown links, requests to move crypto for security, and unexpected calls, and should always verify security alerts through official channels directly from their apps or websites.

more →  ·  More from Trend Micro →