What happened: Phishing E-Mails by a fake Ledger Website.
Scammers are sending out phishing E-Mails to steal your funds from your Ledger device. Make sure not to download anything. Don't follow the instructions in the E-Mail. Don't set a new password. Don't enter your seed/private key! Stay safe and please see the information below.
Sender of the E-Mail: info@ledgersupport.io <- SCAM!Domain Name: LEDGERSUPPORT.IO
Registry Domain ID: D503300001188157325-LRMS
Registrar WHOIS Server: whois.namecheap.com
Registrar URL:
www.namecheap.comUpdated Date: 2020-10-25T08:37:42Z
Creation Date: 2020-10-24T13:48:32Z
Registry Expiry Date: 2021-10-24T13:48:32Z
Registrar Registration Expiration Date:
Additional Notes: Please see this
Reddit-Thread for additional information.
Dear XXX,
We regret to inform you that Ledger has experienced a security breach affecting approximately 85,000 of our customers and that the wallet associated with your e-mail address („E-MAIL-ADDRESS“) is within those affected by the breach.
Namely, on Saturday, October 24th 2020, our forensics team has found several of the Ledger Live administrative servers to be infected with malware.
At this moment, it's technically impossible to conclusively assess the severity and the scope of the data breach. Due to these circumstances, we must assume that your cryptocurrency assets are at risk of being stolen.
If you're receiving this e-mail, it's because you've been affected by the breach. In order to protect your assets, please download the latest version of Ledger Live and follow the instructions to set up a new PIN for your wallet.
Sincerely,
Ledger
Source: https://www.reddit.com/r/ethfinance/comments/jhqhc0/phishing_alert_to_all_ledger_customer/