Ledger | Crypto

The incident reveals the ever-evolving tactics scammers employ against the crypto community and serves as a reminder to remain vigilant. Scammers posing as Ledger, a hardware wallet manufacturer, are sending physical letters to crypto users instructing them to "validate" their wallets or risk losing access to funds, in the latest phishing attack to impact the industry. BitGo CEO Mike Belshe shared a picture of the scam letter, which featured a QR code, presumably linked to a malicious phishing site. The letter was sent through the United States Postal Service (USPS), according to the executive. "These are all scams do not fall for any of these," Troy Lindsey wrote after receiving a copy of the phishing letter. Read more

An unknown attacker hacked into a moderator’s account and used a bot to share phishing links and steal user funds. Hardware wallet provider Ledger has confirmed its Discord server is secure again after an attacker compromised a moderator’s account to post scam links on May 11 to trick users into revealing their seed phrases on a third-party website. “One of our contracted moderators had their account compromised, which allowed a malicious bot to post scam links in one channel,” Ledger team member Quintin Boatwright wrote on the Ledger Discord server.  Some members in Ledger’s Discord channel claimed the attacker abused moderator privileges to ban and mute them as they tried to report the breach, possibly slowing Ledger’s reaction. Read more