In the Ledger data breach update, we can see that the hackers were able to obtain and leak thousands of users’ names, emails, and postal addresses as the hardware wallet company confessed that it was hit hard with the breach as we reported previously in the latest cryptocurrency news below.
The French company said they have been hit hard with the breach which allowed “third-party” access to at least 1 million of the users’ contact details. The company took it to Twitter to state that the marketing and e-commerce database was compromised the users’ contact details and order information but Ledger claimed that there’s no spill of crypto holdings or client transaction info. Ledger explained to their clients in an email today what exactly happened and also wrote a separate blog post adding that they were made aware of the breach on July 14 by a “researcher participating in a bounty program.” The company wrote:
“Your funds are safe and have not been compromised. You are the only in control of your crypto. We know that this database comprises approximately 1 million email addresses that could have been leaked and that 9,500 more detailed personal information leaked as well such as first name, last name, phone number and postal address and products purchased [sic]. More detailed personal information could have been exposed. We are in the process of providing detailed information to that subset via email. These concerned clients will receive a dedicated email at 5PM CET [15:00 UTC].”
Yet another data hack of @Ledger customer database including names and addresses of people that own one of their devices. Are we supposed to just accept this? They should be offering some sort of compensation now our details are in a criminals hands.
— Mr Purple (@M12Purple) July 29, 2020
In the Ledger data breach update as we read further, we can see that the company explained that an unauthorized third party got access to a portion of the e-commerce marketing database through the third-party API keys.” The company also seems to have gone into damage limitation mode as the PR claimed that no client crypto was lost during the breach. Ledger’s CEO Pascal Gauthier said:
A researcher participating in our bounty program made us aware of a potential data breach in our marketing database.
We immediately investigated and fixed it.
Your payment information and crypto funds are safe.
More details: https://t.co/dpnI2tdfmO
— Ledger (@Ledger) July 29, 2020
“The most common attack a scammer can perform with access to email addresses are phishing attacks, so we urge our users to exercise caution, and to remember that Ledger will never ask for your 24-word recovery phrase. Treat anyone who asks for your financial information as a potential scammer.”
DC Forecasts is a leader in many crypto news categories, striving for the highest journalistic standards and abiding by a strict set of editorial policies. If you are interested to offer your expertise or contribute to our news website, feel free to contact us at [email protected]
Discussion about this post