The crypto world is again on a high report as a ledger, the maker of popular crypto -hardware -portfolios, has confirmed That his Discord server is again under control after a recent hack attempt. On 11 May a hacker gained access to a moderator’s account and used it to share swindlinks in the server, so users dedicated his wallet for seed sentences.
What happened?
The attacker drafted a fake story that claimed that there was a new security problem with ledger and forced users to “verify” their recovery sentences via a phishing link. If you click on the link, the scammer could steal the funds of users.
Some users even said They were filled in or exiled when they tried to warn others, delaying the ledger’s answer.
Discord Admin Hacked, users mislead
Former Binance CEO emphasizes the sensitivity of the problem Changpeng Zhao (CZ) Targeted concern about a fresh phishing scam focused on ledger users. This time the attackers took over the Ledger’s official Discord Server administrator account to distribute a dangerous message.
According to CZ, the compromised Ledger Discord Admin account was used to act as official staff. The scammer claimed that a great vulnerability had been discovered in ledger portfolios, which endangers the sensitive information from users – including their secret recovery sentences.
In particular, the victims were aimed at a fraudulent website where they were asked to re -introduce their recovery sentences to ‘secure’ their portfolios. In reality, handing over this sentence gives full control over the wallet to the attacker, so that all funds are immediately at risk.
How safe?
In times of crisis, CZ users reminded users of a gold rule: never share your seed or restoration, regardless of who asks or how urgent the message seems. Even if it looks official, it is probably a scam. He emphasized that social media and communication accounts remain the most vulnerable ties in safety chains, and often become the easiest access points for attackers.
Ledger’s answer
Ledger responded to the CZ warningClarify that their Discord server itself was not hacked. Instead, the account of a contractor Moderator was briefly compromised, allowing a fake message with a Zwendellink to be posted in one channel. The situation was resolved within an hour, the permissions were locked, the neplocation was reported and the security was strengthened. Ledger emphasized that the phishing messy was not from their team and reminded users of never sharing their recovery sentences.
Credit : coinpedia.org
