A security breach occurred on Ledger’s Discord server after an attacker compromised a moderator’s account to spread phishing links and steal user funds. Ledger has taken measures to restore security and prevent future incidents.
Affected: Ledger, Ledger Discord users
Affected: Ledger, Ledger Discord users
Keypoints
- An attacker hacked into a Ledger moderator’s account on Discord, using a bot to share scam links.
- The attacker impersonated a Ledger community manager, prompting users to verify their recovery phrases via scam links.
- Ledger quickly contained the breach by removing the compromised account, deleting the bot, and reviewing permissions.
- Some members reported being banned or muted by the attacker while trying to report the incident, possibly delaying response.
- Ledger intensified its security protocols on Discord to safeguard community interactions and information.
- Last month, scammers sent fake physical letters to Ledger hardware wallet owners, requesting seed phrase verification.
- The incident follows a past data leak in 2020, where personal information of over 270,000 Ledger customers was exposed.
Read More: https://cointelegraph.com/news/ledger-discord-channel-secure-after-security-breach