Counterfeit Ledger Devices Exposed in Sophisticated Crypto Scam

A recent discovery by a cybersecurity researcher has shed light on an increasingly sophisticated scam targeting cryptocurrency holders.

The scam involves counterfeit Ledger devices being sold on Chinese marketplaces, which appear legitimate at first but are designed to capture sensitive wallet data. The devices fail the built-in 'Genuine Check' when connected to the genuine Ledger Live app, prompting users to investigate further.

Upon closer inspection, the researcher found modified hardware and firmware that allowed scammers to expose user seed phrases and drain funds at any time. The scam targets first-time Ledger users, who are tricked into downloading a malicious version of the Ledger Live app via a QR code in the box.

The researcher's findings serve as a warning to users to only purchase hardware from the official Ledger store and download software from its website. Users should be cautious when purchasing cryptocurrency hardware and ensure that they verify the authenticity of devices before using them.