Ledger secures Discord after hacker bot tried to steal seed phrases

Ledger, a prominent hardware wallet provider, recently experienced a security breach on its Discord server. On May 11th, a malicious actor compromised a moderator’s account, leveraging it to disseminate scam links designed to steal users’ seed phrases. The attacker used a bot to post these links within a single channel.

Ledger swiftly responded, removing the compromised account, deleting the bot, reporting the fraudulent website, and conducting a comprehensive review and reinforcement of all relevant permissions. While the incident was quickly contained, some Discord members reported that the attacker misused moderator privileges to silence those who attempted to alert Ledger to the breach, potentially hindering the company’s immediate response.

Ledger maintains that this was an isolated event and has implemented additional security measures to prevent future occurrences. The scam involved urging users to verify their recovery phrases via a malicious link, a tactic that mirrored a previous phishing campaign involving physical letters.

In April 2024, Ledger users received physical letters, seemingly legitimate due to the inclusion of Ledger’s logo, address, and a reference number. These letters directed users to scan a QR code and input their recovery phrase, thereby jeopardizing their funds. The connection between this mail campaign and a 2020 data breach, which exposed the personal information of over 270,000 Ledger customers, remains speculative.

The 2020 breach leaked names, phone numbers, and home addresses, potentially providing scammers with targeting information. This incident highlights the ongoing challenges faced by cryptocurrency companies in protecting user data and assets. The Discord breach and the physical letter scam serve as stark reminders of the persistent threats facing cryptocurrency users and the importance of exercising caution and employing strong security practices. While Ledger has addressed the immediate breach, the incidents underscore the need for continuous vigilance and robust security protocols across all platforms used to engage with customers.

Leave a Reply

Your email address will not be published. Required fields are marked *