The Ledger users' data leaked in 2020 took a new turn. Fraudsters send out fake hardware wallets designed to steal cryptocurrency on behalf of the manufacturer.

The first cases were recorded in May 2021. Users whose data appears in leaked databases began to receive emails to home addresses containing Ledger Nano wallets. They were accompanied by a letter, where allegedly the Ledger management apologized for the data leak and offered to use a new, free and more reliable wallet.

“For security purposes, we have sent you a new device you must switch to a new device to stay safe. There is a manual inside your new box you can read that to learn how to set your new device. For this reason, we have changed our device structure,” reads a letter allegedly signed by Ledger CEO Pascal Gaultier.

The package bore the Ledger logo, and the wallet box was shrink-wrapped to make it look like it had never been opened.

The instructions for the device tells it is obligatory to run a file that is actually a phishing malware, and then enter a mnemonic phrase to restore the wallet on a new device. After that, the scammers will know user's seed phrase.

“This is a scam. Your funds are not at risk despite the data breach. Moreover, device updates should always be done directly in the Live Ledger application on your computer or phone,” the Ledger urges in its official blog post.

In July 2020, scammers managed to hack into the Ledger database and gain access to personal information of about 272,000 clients.