{"id":19530,"date":"2024-12-13T19:15:41","date_gmt":"2024-12-13T17:15:41","guid":{"rendered":"https:\/\/forklog.com\/en\/ledger-user-reports-theft-of-10-btc-manufacturer-denies-responsibility\/"},"modified":"2024-12-13T19:15:41","modified_gmt":"2024-12-13T17:15:41","slug":"ledger-user-reports-theft-of-10-btc-manufacturer-denies-responsibility","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/ledger-user-reports-theft-of-10-btc-manufacturer-denies-responsibility\/","title":{"rendered":"Ledger User Reports Theft of 10 BTC; Manufacturer Denies Responsibility"},"content":{"rendered":"<p>An owner of a Ledger Nano S hardware wallet, known by the pseudonym Anchor Drops, reported the theft of at least 10 BTC and raised questions with the device&#8217;s manufacturer.<\/p>\n<blockquote class=\"twitter-tweet\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">Hey <a href=\"https:\/\/twitter.com\/Ledger?ref_src=twsrc%5Etfw\">@ledger<\/a> tonight I lost 10 BTC and ~1.5m of NFTs stored on my ledger Nano S <\/p>\n<p>The ledger was purchased directly from you. The seed phrase was stored in a secure location, never entered anywhere online. I never signed any malicious transactions. Everything is in my physical\u2026<\/p>\n<p>\u2014 Anchor Drops (@anchor_drops) <a href=\"https:\/\/twitter.com\/anchor_drops\/status\/1867384126954979472?ref_src=twsrc%5Etfw\">December 13, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>According to the user, they also lost $1.5 million in NFTs.<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>&#8220;The wallet was purchased directly from you. The seed phrase was stored in a secure location and never entered online. I did not sign any malicious transactions. Everything is in my physical possession, and I haven&#8217;t used the device for two months. Can you explain what happened?&#8221; wrote Anchor Drops.<\/p>\n<\/blockquote>\n<p>A community member under the pseudonym KDean responded, identifying a suspicious Ethereum transaction approved by the user on February 22, 2022, tagged as Fake_Phishing5443.<\/p>\n<blockquote class=\"twitter-tweet\" data-conversation=\"none\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">Sorry to hear man. Looks like the phish happened a few years ago and just woke up. <a href=\"https:\/\/t.co\/OjzyYXQFKf\">pic.twitter.com\/OjzyYXQFKf<\/a><\/p>\n<p>\u2014 KDean (@kdean) <a href=\"https:\/\/twitter.com\/kdean\/status\/1867393109962764445?ref_src=twsrc%5Etfw\">December 13, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>&#8220;Sorry to hear, man. Looks like the phishing happened a few years ago and just woke up,&#8221; he wrote.<\/p>\n<\/blockquote>\n<p>This transaction explains the loss of NFTs, but it remains unclear how it could have contributed to the theft of bitcoins, noted Fuzzland&#8217;s lead security researcher Tony Ke in a comment to <a href=\"https:\/\/cointelegraph.com\/news\/ledger-user-10-btc-loss-phishing-attack\">Cointelegraph<\/a>.<\/p>\n<p>Senior researcher at Cyvers, Hakan Unal, suggested that the perpetrator&#8217;s actions might have granted access to all blockchains supported by the wallet.<\/p>\n<p>The Ledger team took a similar stance:<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>&#8220;As far as we know, the user fell victim to a phishing attack involving an ETH wallet. We suspect user error also occurred on the Bitcoin side.&#8221;<\/p>\n<\/blockquote>\n<p>In response to Anchor Drops&#8217; inquiries, the hardware wallet developers recommended contacting law enforcement to track and block the stolen assets. The support team assured their readiness to assist in the investigation.<\/p>\n<blockquote class=\"twitter-tweet\" data-conversation=\"none\" data-lang=\"en\">\n<p lang=\"en\" dir=\"ltr\">Losing funds and NFTs is an incredibly distressing experience, let us share a few things that we hope can be of help.<\/p>\n<p>First, it\u2019s important to clarify that Ledger\u2019s security model is designed to ensure that private keys are generated and stored securely within the Secure Element\u2026<\/p>\n<p>\u2014 Ledger (@Ledger) <a href=\"https:\/\/twitter.com\/Ledger\/status\/1867490393354645644?ref_src=twsrc%5Etfw\">December 13, 2024<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>&#8220;Ledger wallets have never been hacked remotely (or physically), such incidents often result from phishing attacks or pre-authorized approvals,&#8221; stated the Ledger team.<\/p>\n<\/blockquote>\n<p>Back in December 2023, hackers compromised the Ledger Connect Kit library for decentralized applications, causing user losses of approximately $600,000.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>An owner of a Ledger Nano S hardware wallet, known by the pseudonym Anchor Drops, reported the theft of at least 10 BTC and raised questions with the device&#8217;s manufacturer. Hey @ledger tonight I lost 10 BTC and ~1.5m of NFTs stored on my ledger Nano S The ledger was purchased directly from you. The [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":19529,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"","news_style_id":"","cryptorium_level":"","_short_excerpt_text":"","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[44,961,1640],"class_list":["post-19530","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybercrime","tag-hardware-wallets","tag-ledger"],"aioseo_notices":[],"amp_enabled":true,"views":"11","promo_type":"","layout_type":"","short_excerpt":"","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/19530","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=19530"}],"version-history":[{"count":0,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/19530\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/19529"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=19530"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=19530"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=19530"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}