Fake Ledger Email

[Krislaw]

I received and email two days ago from a fake Ledger email saying that there's a withdrawal attempt on my Ledger device. I opened the link which is a Google form link but the page looks like it was well edit to look like a normal web page. There's is a part to choose Ledger model. This is an attempt to steal people's keys and seeds.
Form link which doesn't seem to be loading.

Code:

https://docs.google.com/document/d/e/2PACX-1vQFpNsX2UoySsHC6NcHWuvFtu8NZKPz4guPMao_3HsfJ6uzFuCV7WlGQYNt3lY7Gh0FhlO7wVgzu2_V//pub?embedded=true

Then it redirects to this

Code:

https://ledger.com.wallet-login.app/settings/

[1714711849]

1714711849

[1714711849]

1714711849

[The Cryptovator]

Isn't ridiculous mail notification during withdrawal from the Ledger device? You shouldn't even read such a message. Whoever using Ledger hardware wallets should know that email isn't connected with the Ledger device. Perhaps the email address needs login into Ledger official website and that email addresses were leaked. I am wondering why you clicked the links provided from fake Ledger emails since you already detected that is fake. Anyway, thanks for sharing with us. Hope newbies would get a lesson from here.

[DdmrDdmr]

The issue is that some people do eventually take the bait. It seems pretty obvious, but I figure we’d be surprised of the amount people whom, owning a Ledger, are not fully aware of what’s feasible and what’s not, especially if they barely use the device.

There was a case reported today on Bitcoin Discussion whom, having received a similar message, went into panic and proceeded to click the "cancel" link. Apparently, he didn’t go through with the procedure, since the link didn’t work, but somehow it ended with a bad outcome: My email and phone have been hacked, is my bitcoin safe?

We're going to see at least a couple of attempts per week, performed upon the leaked Ledger database, with whatever pretext (be it Ledger related or not).

[TalkStar]

It was expected after the incident of ledger users database leak. Already we have got multiple accusation about this type of email and no one can stop them from sending continuous email who have already got the database. Due to ledger authority's irresponsible work scammers got the opportunity to use their users personal information and Ledger is responsible for it. Ledger have already made announcement about this but i don't think its gonna bring any solution in this matter.

I am pretty much sure that many ledger users are thinking about their wallet safety and ledger authorities lack of security is quite clear to us. In a situation like this who are using ledger they will have to be careful about all fake emails and justify the official email address before clicking on any link which are coming from untrusted sources.

[Krislaw]

We're going to see at least a couple of attempts per week, performed upon the leaked Ledger database, with whatever pretext (be it Ledger related or not).

So many attempts but one could easily tell that it's fake with the mail subject I received, only a newbie would click a Google form link when it appears to be clearly fake and unprofessional. I only signed up for newsletter on the email I received the phishing link on. Ledger needs to upgrade their level of security.
Edit
Imagine what was sent to a user email. I actually saw this in a Facebook group

[ScamViruS]

I also received a similar email from aqwsdaqsewrsaqwder7587@gmail.com. It is easy to understand that this is a fake email address, ledger has nothing to do with this email. And the most interesting thing is, I got this mail in my email address, that email was not used with the ledger. So it is the activities of a scammer group, to steal crypto user's ledger information.

[Baofeng]

Every user Ledger now should check the originator of the email because for sure it will give a hint whether it's from the hacker or from Ledger themselves. Good thing though is that emails are filtering this as spam, but nevertheless still dangerous for Ledger user specially inexperienced one. You will also notice threads after threads about newbies asking if their bitcoin is safe because of this continuous attacks.

[jossiel]

The email of the sender should always be checked first. If it's an obvious scammer and not from Ledger, just ignore and delete the email.

The customers' info database from Ledger has been hacked and that's the reason why owners of Ledger wallets are likely to receive these scam emails.

Hacked Ledger Database Dumped On Raidforums

[Rabi3]

The email of the sender should always be checked first. If it's an obvious scammer and not from Ledger, just ignore and delete the email.

The customers' info database from Ledger has been hacked and that's the reason why owners of Ledger wallets are likely to receive these scam emails.

Hacked Ledger Database Dumped On Raidforums

they used bots to send fake emails to all Ledger users emails, i am pretty sure everyone received them, it's not really hard to set up a bot with a specific email and use a list of emails to send to, a lot of people can do that.

[akirasendo17]

The reason why people are getting have via email is because they don't check if it's really a legitimate email in the first place, at the same time because they are curious that someone might be getting their funds, they click the link to check, this is a really bad move because once you click the link, you don't know if its already injecting something in your computer,
I'm working as technical staff and I always remind my customers or client, how to read email headers, once you received this email, you can see the header if it's legit or not, avoiding clicking links will save you.

[jossiel]

The email of the sender should always be checked first. If it's an obvious scammer and not from Ledger, just ignore and delete the email.

The customers' info database from Ledger has been hacked and that's the reason why owners of Ledger wallets are likely to receive these scam emails.

Hacked Ledger Database Dumped On Raidforums

they used bots to send fake emails to all Ledger users emails, i am pretty sure everyone received them, it's not really hard to set up a bot with a specific email and use a list of emails to send to, a lot of people can do that.

Yeah, I've just checked my email and I've received a fake email too.

But it was automatically thrown to the spam folder which I don't check at all. Their emails are easy to determine if you've been aware of these fake and scam emails. Ledger can't do anything with it anymore as the database and our emails were already on the hackers and forums where they've been staying.

We only need to ignore and don't waste time checking them if it's an obviously fake email notification.

[Darker45]

This is too much and a bit scary! I hope threats like this will not translate into actual actions. In a way, there's not much to really worry about as information pertaining to the size of Bitcoin holdings of Ledger owners are not really compromised along with the leak, but if, God forbid, a certain heinous crime is committed due to the leak of addresses and emails, it is certainly the utter negligence of the Ledger company that is partly to blame.