Users of Ledger hardware wallets under potential threat via email, allegedly capitalizing on data leaked in the 2020 breach.
Warning Signs: Phishing Scams Targeting Ledger Hardware Wallet Users
In a alarming turn of events, modern-day con artists are resorting to sending physical mail, posing as Ledger, in an attempt to pilfer your hardware wallet's seed phrases - a treacherous scheme that may possibly be linked to Ledger's 2020 data breach incident.
Recently, a post on X shared a snapshot of one such deceptive letter. The counterfeit letter, delivered via post, appeared authentic with Ledger branding, official business address, and a unique reference number. It requested the recipient to scan a QR code and input their wallet's 24-word recovery phrase, citing it as necessary for a "pivotal security upgrade." It further stated that neglecting to complete the "mandatory validation process" could potentially restrict access to the user's cryptocurrency funds.
In response, Ledger took to stating that "we'll never ask for your 24-word recovery phrase. If anyone does, it's a scam."
Rumblings in the Crypto World:
Jacob Canfield hypothesized that this deceptive letter could be connected to Ledger's infamous 2020 data breach. In this sordid episode, a hacker infiltrated an inactive API key to penetrate portions of Ledger's e-commerce and marketing database. The categorical breach led to the disclosure of approximately one million customer email addresses, along with other sensitive details such as names, phone numbers, shipping addresses, and records of purchased products.
While it remains unclear whether Canfield's letter is directly associated with the 2020 Ledger breach, cybersecurity outlet BleepingComputer previously reported that data from the breach was utilized in numerous crypto phishing campaigns involving fabricated emails, bogus hardware wallets, and deceitful websites.
Historic Data Breach:There was a considerable storm a-brewing in 2020 when Ledger's customer data was compromised, leaving personal information such as names, email addresses, phone numbers, and physical mail addresses exposed to hackers. The breach affected more than 270,000 customers, making detailed buyer records available on platforms like RaidForums[3][4][5].
There is speculation that the current scam, where scammers send official-looking letters asking for recovery seed phrases, could potentially exploit the leaked data from this breach by targeting individuals with detailed information that may have originated from the leaked database[3][5]. However, authorities have yet to provide confirmation linking the two incidents directly.
Be vigilant! Ledger has confirmed that the letters are part of a phishing scam and implored users to refrain from divulging their recovery phrases under any circumstances, as this could allow scammers to access their cryptocurrency assets[1][4][5].
- The recent phishing scam involves sending fake letters that mimic Ledger's branding, asking for wallet users' 24-word recovery phrases, ostensibly for a security upgrade.
- Ledger has emphatically stated that they will never ask for users' recovery phrases, and any such request is a scam.
- Jacob Canfield speculates that this deceptive letter could be linked to Ledger's 2020 data breach, where hackers accessed one million customer details, potentially exploiting leaked information to target individuals.
- BleepingComputer previously reported that data from the 2020 Ledger breach was used in phishing campaigns, involving fabricated emails, bogus hardware wallets, and deceptive websites.
- In 2020, Ledger's customer data was compromised, exposing personal information like names, email addresses, phone numbers, and physical mail addresses, affecting over 270,000 customers.
- Speculation exists that the current phishing scam could exploit the leaked data from the 2020 Ledger breach by targeting individuals with detailed information that may have originated from the leaked database.
- In light of these events, it's crucial for users to stay vigilant, as Ledger implores wallet users to never disclose their recovery phrases to prevent scammers from accessing their cryptocurrency assets.
