Ledger is a hardware cryptocurrency wallet that allows you to store, manage, and sell cryptocurrency. In July 2020, Ledger suffered a data breach after a website vulnerability allowed threat actors to access customers’ contact details. Starting in October 2020, Ledger users began receiving fake emails about a new data breach from Ledger. The email stated that the user was affected by the breach and that they should install the latest version of Ledger Live to secure their assets with a new pin.
If a user attempts to download the app they are directed to the legitimate Ledger Apple or Google app pages; if they try to download the desktop version, however, it installs a fake Ledger application from the phishing site. This fake app is almost identical to the real version, with only some choices missing when the program starts.
Read the full report on BleepingComputer website by clicking the button below.