On May 11, 2023, Ledger reported a security breach involving its official Discord server, catching users off guard. A hacker gained access to a moderator's account and posted a phishing message.
Incident Description
The hacker used the compromised moderator account to post a message claiming that users should check their recovery phrases due to a vulnerability in the new Ledger wallet. This message was part of a classic phishing scheme, and users clicking on the fake link could lose access to their wallets.
Community Reaction
Former Binance CEO Changpeng Zhao quickly addressed the incident, warning users on social media. He emphasized that recovery phrases should never be shared, even if the message seems official. Additionally, some community members attempted to warn others about the scam but faced issues, such as being muted in the discussion.
Ledger's Response and Security Measures
In a formal statement, Ledger explained that the breach did not come from a direct hack of the server, but rather from a temporarily compromised third-party moderator account. The company acted swiftly to revoke access, delete the scam link, and report the phishing site. Ledger reiterated that it will never request recovery phrases from users, especially via social media.
The incident on Ledger's Discord server highlights the importance of securely handling information and the need for confirming communications through official channels. Users should remain cautious and vigilant in the rapidly changing crypto space.
