Ledger Users Targeted in Fake Security Letters Scam

Scammers target Ledger users with fake security letters, stealing recovery phrases and draining crypto wallets through phishing schemes.

by .
Published:
Hacker looking straight at you, whilst hacking.
Created by Kornelija Poderskytฤ— from DailyCoin
Google News Follow Button

Ledger, the crypto hardware wallet company, has confirmed a new wave of sophisticated phishing attacks, this time involving physical letters mailed directly to customers.

On Tuesday, crypto user Jacob Canfield sounded the alarm on X, sharing images of a fraudulent letter posing as official Ledger communication.

The letter warns of an โ€œurgent security updateโ€ and instructs recipients to scan a QR code and enter their 24-word recovery phrase to avoid disruptions to their wallet. It also threatens restricted access if the process is not completed.

Sponsored

The letter also warns that failure to complete โ€œthis mandatory validation processโ€ may result in restricted access to the userโ€™s wallet and funds.

In reality, the QR code leads to a phishing site. Once the recovery phrase is entered, attackers gain full access to the wallet and can drain all assets remotely.

โ€œScammers impersonating Ledger and Ledger representatives are unfortunately common,โ€ the official Ledger X account commented.

โ€œAlways remember: Ledger will never call, DM, or ask for your 24-word recovery phrase. If someone does, itโ€™s a scam. Stay cautious and keep your crypto safe.โ€

The company also warned users not to interact with anyone claiming to be a Ledger employee or offering help recovering stolen funds.

Old Data Leak, New Tactics

Canfield believes the attackers used personal data from a previous breach. In 2020, Ledger disclosed a major data leak that exposed the emails, physical addresses, and phone numbers of over 273,000 customers. That information was later posted to a public hacking forum.

In 2021, some users reportedย receiving fake Ledger devices that were rigged to install malware if plugged into a computer.

Why This Matters

Crypto scams, designed to steal sensitive information and gain access to digital assets, are increasingly using more personalized tactics and remain a serious threat to crypto users.

Check out DailyCoinโ€™s trending crypto stories:

Trump Crypto Teamโ€™s $20M Sell-Off Sends Memecoin Price Crumbling
XRP To Replace SWIFT? Ripple CEO Uncovers a $155T Opportunity

This article is for information purposes only and should not be considered trading or investment advice. Nothing herein shall be construed as financial, legal, or tax advice. Trading forex, cryptocurrencies, and CFDs pose a considerable risk of loss.

Tags
Author
Alex Costa
Alex Costa

Alex Costa is a crypto writer and investor specializing in researching, analyzing and reporting on promising small-cap projects that are gaining traction in the industry. He has been in crypto since 2018, when he began looking for hidden gems in crypto. Today, he is dedicated to finding the next top performing NFTs and tokens.

Read more