Scammers Mail Hacked Ledger Devices To Steal Crypto

Scammers are now mailing hacked ledger devices to Ledger users in a bid to steal crypto from unsuspecting users.

An alarmed user made a post on Reddit that they had gotten a Ledger device that they hadn’t purchased. In the package was a poorly worded letter riddled with grammatical errors that explained that due to a cyberattack, Ledger was replacing all old devices with new ones for the purpose of safety.

Ledger scam letter sent to the user explaining the reason for the replacement

Letter explaining the reason the device was sent

In further pictures posted by the accounts was a sealed and authentic looking Ledger device.

Sealed box ledger device sent to the user

Device sent in a sealed box

The user then went on to open the device which contained instructions for connecting the device to a computer and installing the application from the device. Asking to choose seed phrase length and inputting your seed phrase into the device.

Instruction manual in the device to input seed phrase

Instructions contained in the device asking to input seed phrases

Growing more suspicious, instead of plugging the device to their computer, the user went on to dismantle the Ledger device itself.

Ledger devices look like flash drives with a small screen on them. The screen is to make sure that your seed phrase is yours alone.

This proved to be the right move as upon dismantling the device and looking at the circuit board, there were obvious differences between the new device and the original Ledger device.

Side by side comparison of original and scam Ledger devices

Side by side comparison of the device sent and an original Ledger device. Fake device on the left and original device on the right.

The scam is obviously a phishing scam meant to send the attackers the seed phrases once they are entered on the compromised device.

In the Reddit post, they issued a warning to other users. A bold new way of attacking with the poster referring to it as “some next level of scam attempt.”

Ledger Hack

Late last year, Ledger had announced that there had been a data breach and the attackers had gotten access to their databases. The names, phone numbers, and mailing addresses of 272,000 customers were stolen and…

Read More