89Trust
Verified
🔍 Web Verified
Rust LanguageonMastodon5d ago
⚠️ An active phishing attack is targeting crate owners by asking them to "confirm that your email address is still active". These messages are not from crates.io, and should be ignored. (We will never ask you to confirm that your e-mail address is still active.) ⚠️
Trust Metrics
92
88
95
80
Claim Accuracy92%
Source Quality88%
Framing & Tone95%
Context80%
Analysis Summary
This is a legitimate security warning from the official Rust project about an active phishing campaign targeting package maintainers. The alert is clear, actionable, and backed by the account's official status and high social corroboration—this is exactly how critical security information should be communicated to a development community.
Claims Analysis (3)
“An active phishing attack is targeting crate owners by asking them to confirm that their email address is still active”
Official Rust project account warning of real phishing threat. High social corroboration (16 instances, 609 engagements) confirms widespread credibility.
“These messages are not from crates.io”
Official crates.io statement that fraudulent emails are in circulation. Clear denial of authenticity from authoritative source.
“Crates.io will never ask you to confirm that your e-mail address is still active”
Official policy statement from Rust project confirming legitimate crates.io never uses this confirmation request tactic.
Was this analysis helpful?
Try ClearFeed free →