Ledger users are receiving physical ‘phishing’ letters asking for their recovery phrases
The post Ledger users are receiving physical ‘phishing’ letters asking for their recovery phrases appeared on BitcoinEthereumNews.com.
Scammers sent physical letters to the owners of Ledger crypto hardware wallets requesting them to validate their private 24-word recovery phrases with the aim of accessing and draining their wallets. The firm responded by saying the scam was common practice but reassured its customers that the devices were secure. Ledger crypto hardware wallet owners like tech commentator Jacob Canfield received fraudulent letters from scammers asking for validation and submission of seed phrases. The letter threatened that ‘failure to complete this mandatory validation process may result in restricted access to your wallet and funds’. Canfield shared screenshots of the letter asking him to ‘immediately’ take care of a security update, but failure to do so would lead to the ‘disruption’ of his device, restricting access to his wallet and funds. The tech commentator suggested that scammers were sending letters to customers whose data—the personal information of over 270K customers–was leaked nearly five years ago. Earlier this month, a crypto hardware wallet reseller said they had also received multiple reports of Ledger users receiving a similar letter. Several other users reportedly received fake devices that were tampered with and designed to install malware upon use. Canfield shares a scam letter from ‘Ledger’ requesting a QR scan Breaking: New scam meta launched. Now they’re sending physical letters to the @Ledger addresses database leak requesting an ‘upgrade’ due to a security risk. Be very cautious and warn any friends or family that you know is in crypto and is not that savvy. pic.twitter.com/XoUAGQBJXt — Jacob Canfield (@JacobCanfield) April 28, 2025 Ledger hardware wallet users have received ‘phishing’ letters posing as official correspondence, claiming an ‘urgent security update’ and asking users to scan a QR code–and follow on-screen instructions. Users were also asked to provide their 24-word private recovery phrase to steal control of their…
Filed under: News - @ April 30, 2025 7:21 am