Ledger, the hardware wallet provider, has confirmed that its Discord server is once again secure after a security breach on May 11. An attacker compromised a moderator’s account, using it to post phishing links designed to trick users into revealing their seed phrases on a fraudulent website.
Quintin Boatwright, a member of Ledger’s team, stated that the issue was swiftly addressed. The compromised account was removed, the malicious bot was deleted, the phishing website was reported, and all relevant permissions were reviewed and secured. Despite these measures, some community members reported that the attacker exploited moderator privileges to ban and mute users attempting to report the breach, potentially delaying Ledger’s response.
The hacker, posing as a Ledger community manager, informed users of a fictitious vulnerability in Ledger’s security systems and urged them to verify their recovery phrases via a scam link. Users were prompted to connect their wallets and follow on-screen instructions, which could have led to the compromise of their funds.
This incident follows a series of phishing attempts targeting Ledger users. In April, scammers mailed physical letters to Ledger hardware wallet owners, requesting them to validate their private seed phrases. These letters, bearing Ledger’s logo and business address, asked users to scan a QR code and enter their recovery phrases, aiming to access and empty their wallets.
The recent breach underscores the persistent threats facing the crypto community and the importance of vigilance against phishing attacks.
