Ledger Users Targeted by Phishing Emails Over Fake Data Breach

Fraudsters, posing as Ledger hardware wallet support, have sent fake notifications about a service breach, urging users to disclose their seed phrases. This was reported by Bleeping Computer.

Hey @Ledger someone has spoofed your REAL support email and is currently sending this to people to get them to expose their recovery phrase

For a company we’re all forced to trust for custody of our assets, this is not a good look pic.twitter.com/9GIz6wJi3O

— Tony (@0xRacist) December 16, 2024

The phishing campaign warns of a supposed recent data leak and directs wallet owners to a site for “device verification.” The emails appear legitimate as the email address visually resembles the actual Ledger domain. In reality, the email was sent via an email marketing platform. 

The fraudsters also forged a branded website page. Upon visiting, a pop-up requests the wallet’s private key to gain full control over users’ funds.

In a comment under the post, Ledger representatives noted that “scam attempts are an unfortunate part of life online, and no one is completely immune from them.”

Scam attempts are an unfortunate part of life online and no one is completely immune. At Ledger, we’ve designed our technology so that your crypto and private keys remain safe, regardless of external incidents. Ledger devices are purpose-built to keep your assets secure and…

— Ledger (@Ledger) December 17, 2024

“Ledger will never call, send direct messages, or ask for your recovery seed phrase. Only scammers do that,” the developers added.

The number of potential victims of the scam is not reported. 

Previously, a Ledger user claimed the theft of 10 BTC, but the manufacturer denied the allegations.

In December 2023, Ledger confirmed the compromise of a software library used by decentralized applications. This allowed a hacker to inject malicious code into their interfaces and steal about $600,000.