Phishing scammers are actively targeting Ledger users by mimicking the company’s support emails.
These malicious emails falsely claim that Ledger experienced a "recent data breach" and urge users to secure their wallets by verifying their seed phrases.
Victims clicking on the email are redirected to a fraudulent website resembling Ledger’s official page.
Did you know?
Subscribe - We publish new crypto explainer videos every week!
What is a MetaMask Wallet? (And How to Use it - Animated)
The site displays a prompt to “verify your Ledger”, falsely suggesting it will determine whether their device has been compromised.
Once users proceed, they are asked to enter their seed phrase. By obtaining this information, scammers can gain control over the victims' wallets.
On December 17, Ledger addressed the phishing scheme on X, stating that it would never request sensitive information such as a 24-word recovery phrase through any communication channel.
Ledger will never call, DM, or ask for your 24-word recovery phrase. If someone does, it’s a scam. Stay cautious and keep your crypto safe.
Screenshots shared on X revealed that the emails are designed to appear as if they were sent from Ledger's official support address. Additionally, the scammers reportedly distributed the messages using an email marketing platform.
This incident follows a recent report from December 13, in which a Ledger user claimed to have lost $2.5 million in Bitcoin