Ledger users are reporting a new wave of phishing attacks in the form of physical letters sent directly to their homes.
These letters ask recipients to provide their 24-word recovery phrases under the pretense of performing a security update. Ledger has responded by confirming the scam and assuring users that their devices remain secure.
Scammers use old data breach to target users
Tech commentator Jacob Canfield received a counterfeit letter from Ledger’s name which many other individuals also got. A legitimate branding presentation and proper business address and reference number made this communication seem official. Users who failed to validate a vital security upgrade would encounter restricted wallet access according to the message. The fraudulent emails might specifically target victims from the 2020 Ledger data breach that released details of more than 270,000 customers.Canfield reported this.
Other hardware wallet users and resellers have also reported receiving similar scam letters. Some users claimed to have received fake devices tampered with and designed to install malware. The scam appears to be an attempt to exploit the older breach to drain users’ wallets.
QR code scam asks for recovery phrases
The fraudulent letters contained QR codes while telling people to read them before following commands. According to the reported instructions people needed to provide their private recovery phrase which granted intruders access to their crypto wallets. According to a statement from Ledger the letters were determined fraudulent and the company denied any policy to request recovery phrases from users.
Canfield posted screenshots of the letter to warn others in the crypto community. He advised people to be cautious and to alert friends and family who may not be familiar with security threats. Ledger emphasized that while it blocks scammers and reports them, it cannot fully control what others publish on platforms or send by mail.
Ledger urges users to stay alert
Ledger praised Canfield for raising awareness and reminded users that the company does not make unsolicited requests for recovery phrases. The company also confirmed that it would never contact users by phone or social media to ask for sensitive information. Ledger added that its hardware wallets are designed to protect user funds, even in cases of external fraud attempts.
The company encouraged all users to ignore suspicious messages and avoid contact with anyone claiming to be from Ledger offering help with fund recovery.