Don’t Open That Letter: Ledger Users Face New Wallet Theft Threat

The fraudulent message urges recipients to reveal their wallet recovery phrases under the pretense of a “mandatory security upgrade.”

Crypto trader Jacob Canfield first brought attention to the scam on X, noting that the letters appear to target individuals affected by a previous Ledger data breach. The document falsely claims that users must validate their wallets or risk losing access, using fear-based language to coax people into giving up their 24-word recovery phrase.

Ledger quickly responded, confirming that the letter is a scam and emphasizing that it will never request recovery phrases by any method—physical or digital. “These impersonation attempts happen often,” the company said. “If anyone asks for your recovery phrase, it’s a scam—no exceptions.”

READ MORE:

XRP ETF Decision Delayed as SEC Monitors Ripple Appeal

This isn’t the first time attackers have exploited Ledger’s past data leak. In 2021, malicious actors sent modified hardware wallets through the mail in a similar attempt to compromise user funds. That leak exposed over 270,000 email addresses and physical mailing addresses, which scammers continue to weaponize.

While Ledger has long warned users about phishing via emails, phone calls, and social media, the reemergence of physical scams may now require broader awareness—including traditional mail. For users, the message remains clear: never share your recovery phrase, no matter the format of the request.

The post Don’t Open That Letter: Ledger Users Face New Wallet Theft Threat appeared first on Coindoo.