Scammers posing as Ledger, a {hardware} pockets producer, are sending bodily letters to crypto customers instructing them to “validate” their wallets or threat shedding entry to funds, within the newest phishing assault to affect the trade.
BitGo CEO Mike Belshe shared an image of the rip-off letter, which featured a QR code, presumably linked to a malicious phishing web site. The letter was despatched by way of the US Postal Service (USPS), in line with the chief.
“These are all scams don’t fall for any of those,” Troy Lindsey wrote after receiving a replica of the phishing letter.
Cointelegraph reached out to Ledger for remark however was unable to acquire a response by the point of publication.
This phishing try highlights the ever-evolving complexity and ways of social engineering scams designed to steal crypto non-public keys, consumer funds, and different delicate knowledge from unsuspecting victims.
Associated: Hackers utilizing pretend Ledger Reside app to steal seed phrases and drain crypto
Coinbase and crypto customers hit laborious by phishing assaults in 2025
In April 2025, $330 million in Bitcoin (BTC) was stolen from an aged particular person by way of a phishing assault, onchain detective ZackXBT confirmed in an April 30 X put up.
“Two suspects within the $330 million heist embrace ‘Nina/Mo’ — a Somalian who operates a name rip-off middle in Camden, UK — and an confederate ‘W0rk,’ who assisted with the location and name,” the onchain safety analyst mentioned in an replace.
On Might 15, crypto trade Coinbase introduced it was the goal of a ransom try after customer support contractors, who had been later fired by the corporate, leaked consumer knowledge to menace actors.
The scammers demanded a $20 million ransom, which Coinbase refused to pay, and the stolen knowledge included names, addresses, contact data, and a restricted quantity of different delicate account knowledge belonging to a small subset of Coinbase prospects.
No non-public keys, login credentials, or accesses to Coinbase Prime accounts had been compromised through the leak, in line with the trade.
TechCrunch founder Michael Arrington was extremely important of the trade for the safety failure, arguing that it’ll result in bodily violence in opposition to prospects uncovered within the hack.
Journal: Crypto-Sec: Phishing scammer goes after Hedera customers, deal with poisoner will get $70K
