Scammers are now mailing hacked ledger devices to Ledger users in a bid to steal crypto from unsuspecting users.
An alarmed user made a post on Reddit that they had gotten a Ledger device that they hadn’t purchased. In the package was a poorly worded letter riddled with grammatical errors that explained that due to a cyberattack, Ledger was replacing all old devices with new ones for the purpose of safety.
Letter explaining the reason the device was sent
In further pictures posted by the accounts was a sealed and authentic looking Ledger device.
Device sent in a sealed box
The user then went on to open the device which contained instructions for connecting the device to a computer and installing the application from the device. Asking to choose seed phrase length and inputting your seed phrase into the device.
Instructions contained in the device asking to input seed phrases
Growing more suspicious, instead of plugging the device to their computer, the user went on to dismantle the Ledger device itself.
Ledger devices look like flash drives with a small screen on them. The screen is to make sure that your seed phrase is yours alone.
This proved to be the right move as upon dismantling the device and looking at the circuit board, there were obvious differences between the new device and the original Ledger device.
Side by side comparison of the device sent and an original Ledger device. Fake device on the left and original device on the right.
The scam is obviously a phishing scam meant to send the attackers the seed phrases once they are entered on the compromised device.
In the Reddit post, they issued a warning to other users. A bold new way of attacking with the poster referring to it as “some next level of scam attempt.”
Late last year, Ledger had announced that there had been a data breach and the attackers had gotten access to their databases. The names, phone numbers, and mailing addresses of 272,000 customers were stolen and…