CryptoPotato
CryptoPotato
  • Crypto News
  • Margin Trading
  • Guides
    • Bitcoin & Crypto Guides 101
    • Bitcoin For Beginners
    • Editorials
  • DeFi & NFT
  • Buy
  • Language
  • Crypto News
  • Bitcoin For Beginners
  • Cryptocurrency Guides 101
  • Editorials
  • Bitcoin & Crypto Margin Trading
  • DeFi & NFT News
  • Bitcoin Price Analysis
  • CryptoPotato Crypto Fund
  • Ethereum (ETH) Price Analysis
  • Ripple (XRP) Price Analysis
  • Market Updates
  • Interviews
  • Buy Bitcoin with Card
  • bitcoin
    BTC$23,978.00
  • ethereum
    ETH$1,892.59
    • Market Updates
    • BTC Analysis
    • ETH Analysis
    • XRP Analysis
    • Interviews
    • Opinions
    CryptoPotato
    CryptoPotato
    • Crypto News
    • Margin Trading
    • Guides
      • Bitcoin & Crypto Guides 101
      • Bitcoin For Beginners
      • Editorials
    • DeFi & NFT
    • Buy
    • Language
    • Crypto News
    • Bitcoin For Beginners
    • Cryptocurrency Guides 101
    • Editorials
    • Bitcoin & Crypto Margin Trading
    • DeFi & NFT News
    • Bitcoin Price Analysis
    • CryptoPotato Crypto Fund
    • Ethereum (ETH) Price Analysis
    • Ripple (XRP) Price Analysis
    • Market Updates
    • Interviews
    • Buy Bitcoin with Card
    Home » Crypto News » Beware: Latest Ledger Email Phishing Scam Making The Rounds

    Beware: Latest Ledger Email Phishing Scam Making The Rounds

    Author: Martin Young

    Last Updated Mar 22, 2021 @ 16:17

    The crypto industry is flooded with scammers preying on the vulnerable, and their latest attempt is to dupe hardware wallet Ledger consumers into revealing their credentials or downloading malware.

    Consumers who have purchased Ledger hardware wallets have been waking up to nasty emails claiming that their crypto assets are in danger of being stolen. It is the latest in a long list of phishing attacks designed to lure the uninitiated into divulging their secret phrases or downloading malware.

    The first round of spurious emails was asking for the 24-word recovery phrase and Ledger responded with a warning emailed to customers confirming that it would never ask for this.

    The second round of emails is a little more insidious as they claim that a data breach on Ledger servers has affected the wallet associated with the target email account. It asks users to download the latest version of Ledger Live, via an email embedded link, and reset their PIN numbers.

    It was reported that Ledger did suffer a data breach in July resulting in 9,500 users having their personal information compromised.

    Ledger scam email

    ADVERTISEMENT

    Sneaky Social Engineering

    On initial glance, the email looks genuine but there are a number of key giveaways that are easy to spot for the trained eye. Firstly, the domain name is not from ledger.com but legder.com

    Secondly, hovering over the link in the box (but being careful not to click it) reveals a dodgy URL; http:// url9594 (dot) legder (dot) com which is likely to result in the downloading of malware that may be able to log keystrokes, steal credentials, or mine cryptocurrency.

    Crypto investors and traders have already taken to twitter to share this phishing scam and warn others about it;

    *** SCAM ALERT***
    I just received this in my inbox. A new phishing scam has been send out claiming there are problems with @Ledger live and a call to action to download “the newest version of Ledger live”.

    Please share this in order for as many people as possible to see this… pic.twitter.com/xOKUBoKI63

    — Young And Investing (@QuintenFrancois) October 25, 2020

    Additionally, Ledger itself has published a list confirming knowledge of these phishing attempts and reinforcing the premise that funds are safe providing the recovery phrase is;

    Remember, your assets are safe if your 24-word recovery phrase is. We’ve come up with a short list of tips and tricks to help — we know it’s quite Phishy out there. (1/5)

    — Ledger (@Ledger) October 26, 2020

    The company stated that nobody, including Ledger, should ever ask for the PIN number of recovery phrase, but this latest email was a call to action prompting the clicking of a malicious link.

    Risk Mitigation

    Hardware wallets, such as those produced by Ledger or Trezor, take an extra step to mitigate these risks. Ledger stated that crypto assets cannot be sent from a Ledger device unless the user physically connects it to the computer and verifies the transaction on both the computer and the device.

    If malware is controlling the PC or smartphone, it cannot control the Ledger wallet, even when it is plugged into the computer.

    SPECIAL OFFER (Sponsored)
    Binance Free $100 (Exclusive): Use this link to register and receive $100 free and 10% off fees on Binance Futures first month (terms).

    PrimeXBT Special Offer: Use this link to register & enter POTATO50 code to receive up to $7,000 on your deposits.

    You Might Also Like:

    • bitcoin_email_scam
      Email Scam Lures Victims Into Fraudulent Bitcoin Investment
    • GoogleBitcoin
      Google Relocates Business From A BPO After Employees Caught In A BTC Scam
    • convict_bitcoin_cover
      Bulgarian National Convicted For His Role in a Bitcoin-Related Crypto Exchage Scam
    Tags: Hacking Security
    Enjoy reading? Share with your friends
    Facebook Twitter LinkedIn Telegram

    About The Author

    Martin J. Young
    More posts by this author

    Martin has been writing on cybersecurity and infotech for over two decades. He has previous trading experience and has been covering developments in the blockchain and cryptocurrency industry since 2017. Contact Martin: LinkedIn

  • bitcoin
    BTC$23,978.00
  • ethereum
    ETH$1,892.59
  • Join Our Community

    FacebookTwitter YouTubeTelegram


    Editorials
    Cardano’s Vasil Hard Fork Explained: What to Expect from the Major Upgrade?

    Cardano’s Vasil Hard Fork Explained: What to Expect from the Major Upgrade?

    Users in Web3 Will Do a lot More Than Just Trade Crypto: Cronos’ Ken Timsit (Interview)

    Users in Web3 Will Do a lot More Than Just Trade Crypto: Cronos’ Ken Timsit (Interview)

    Institutions Are Starting to Buy Back: Interview with Nansen

    Institutions Are Starting to Buy Back: Interview with Nansen

    Top 5 Most Common Scams Related to Ethereum 2.0

    Top 5 Most Common Scams Related to Ethereum 2.0

    What is the Merge? What You Need to Know About the Transition to Ethereum 2.0

    What is the Merge? What You Need to Know About the Transition to Ethereum 2.0

    These are the Bear Market Benefits, and the Future of NFTs: DappRadar CEO (Interview)

    These are the Bear Market Benefits, and the Future of NFTs: DappRadar CEO (Interview)

    5 Common Mistakes to Avoid During a Crypto Bear Market

    5 Common Mistakes to Avoid During a Crypto Bear Market

    Join Our Newsletter
    Become a CryptoPotato VIP
    One Weekly Email Can Change Your Crypto Life.
    Sign-up FREE to receive our extended weekly market update and coin analysis report
    We NEVER send spam. You can unsubscribe at any time.
    Invalid email address
    Thanks for subscribing!
    Footer Logo
    About
    Advertise on CryptoPotato
    About Us | Contact Us | Careers

    Terms of service | Privacy Policy | GDPR
    More Sections
    IEO List | Evaluations
    Airdrops
    Scholarship
    Cannabis Stocks News | Market Analysis
    Disclaimer
    Disclaimer: Information found on CryptoPotato is those of writers quoted. It does not represent the opinions of CryptoPotato on whether to buy, sell, or hold any investments. You are advised to conduct your own research before making any investment decisions. Use provided information at your own risk. Full disclaimer
    © Copyright CryptoPotato 2016 - 2021
    Scroll to top
    One Weekly Email Can Change Your Crypto Life.

    Sign-up FREE to receive our extended weekly market update and coin analysis report

    We never send SPAM. You can unsubscribe at any moment
    Invalid email address
    Thanks for subscribing!