Recently, Ledger users have encountered a new wave of fraudulent emails. The attackers pose as company employees and ask to enter secret phrases to restore crypto wallets. The goal of the fraudsters is to gain control over the devices and steal funds.
How fraudsters operate
One example of a fraudulent email: Jacob Canfield received a message from Ledger asking him to perform a security update. The email contained a request to scan a QR code and enter a personal wallet number. At the same time, the email threatened to restrict access to the wallet and funds if the request was not fulfilled.
The danger of seed phrases
A seed phrase is a string of up to 24 words that opens access to a crypto wallet. Fraudsters can use this phrase to manage the wallet and transfer funds.
Ledger Reacts
Ledger has confirmed that the email is a scam. Ledger warns users against phishing attacks. The company emphasizes that Ledger does not call or send emails asking for a recovery phrase.
Link to the data leak
Jacob Canfield suggested that scammers are sending emails to Ledger customers whose data was leaked in 2020. In 2020, a hacker broke into the Ledger database and posted the personal information of more than 270,000 customers. In the following years, users encountered fake metering devices containing malware.
What to do to avoid becoming a victim of scammers
To avoid becoming a victim of phishing attacks, you must be vigilant and do not enter secret phrases at the request of unknown persons. Do not open emails from unknown senders and do not click on links in them. Check the sender’s address and do not provide personal information in response to suspicious requests.
Be careful and protect your crypto wallets from scammers!
