Apple App Store Fake Ledger App Steals Over $400,000 in Bitcoin

A recent security breach on the Apple App Store has resulted in a significant loss of Bitcoin for musician G. Love. A fake Ledger app was downloaded from the store, which tricked the user into entering his recovery phrase. This allowed the attackers to drain the wallet of its contents, worth over $400,000.

The incident occurred when G. Love was setting up his new Apple computer and searching for a legitimate version of the Ledger Live app on the App Store. He downloaded an app that looked authentic but turned out to be malicious.

According to on-chain investigator ZachXBT, the stolen funds were routed through addresses identified as KuCoin deposit addresses. Unfortunately, it is unlikely that the funds will be recovered, and ZachXBT has accused KuCoin of presenting itself as compliant only when it suits its interests.

Crypto security experts are warning users to be cautious when interacting with their wallets and never enter a hardware wallet seed phrase on an internet-connected device. They advise verifying any messages urging them to download or update wallet software independently before taking action.