BSV
$56.03
Vol 65.8m
0%
BTC
$94022
Vol 25663.94m
-0.5%
BCH
$434.87
Vol 313.27m
-1.28%
LTC
$100.41
Vol 379.05m
-4.03%
DOGE
$0.33
Vol 1737.26m
-2.12%
Getting your Trinity Audio player ready...

Over 1 million pieces of Ledger hardware wallet user’s personal identification information has been published on RaidForums, a marketplace for buying, selling, and sharing hacked information. To be more specific, 1 million email addresses and 272,000 customer’s first and last names, postal addresses, and phone numbers were published.

RaidForum post

That being said, the damage from the June 25 Ledger security breach is much worse than the company originally believed it to be. When Ledger learned of the breach and made a public announcement, they said that only 9,500 customers’ names, addresses, and phone numbers had been compromised.

The blackmail has begun

A lot of Ledger user’s personal information is out in the wild right now, and most likely, in the hands of individuals looking to scam unsuspecting individuals out of their money. Unfortunately, attackers are already using the user information they got from RaidForums to scam, defraud, and blackmail Ledger users.

A Reddit user that goes by ‘relephants’ posted a message on r/ledgerwallet> warning others that he is being targeted by attackers that have his email address and phone number. The attacker requested that relephants pays them $500 to a wallet address, claimed to know where relephants lives (courtesy of Ledger), and said they are “not afraid to show up when you [relephants] least expect it and see how my wrench works against your face.”

Ledger wallet user is being blackmailed

What’s next?

At this point, the situation is out of Ledger’s hands, the damage has already been done, and it is irreversible. The best advice ledger can–and did–give, is to look out for more phishing attacks from attackers that have the customer data.

Ledger has set up a website that provides an overview of some of the phishing scams that have happened to date so that users can know not to fall for the same attacks if they are directed toward them. Since the date of the breach, Ledger says they have successfully shut down 171 phishing websites that capitalized on the stolen customer information.

Recommended for you

Hal Finney’s first Bitcoin transaction happened 16 years ago today
Hal Finney's 10-coin receipt from Satoshi was just "a test," but it marked another early leap of faith that helped...
January 12, 2025
The best of 2024—CoinGeek Weekly Livestream highlights
In the first episode of CoinGeek Weekly Livestream Season 5, host Kurt Wuckert Jr. looks back at some of the...
January 10, 2025
Advertisement
Advertisement
Advertisement