A recent data breach involving payment processor Globale has raised concerns among customers of hardware wallet manufacturer Ledger. According to the official information, the incident has reportedly exposed sensitive customer information, prompting alerts from on-chain investigator ZachXBT to the cryptocurrency community.
Unauthorized Access Notification
Ledger customers received notifications from Globale regarding unauthorized access to its systems, which led to the exposure of names and contact details. The payment processor acted swiftly, containing the incident and engaging independent forensic experts to investigate the breach.
Details of the Breach
In the notification email, Globale confirmed that personal data had been improperly accessed, although it did not disclose the number of affected customers or the timeline of the unauthorized access. As a key player in handling payment processing for Ledger's online store, Globale's security lapse raises significant concerns.
Previous Data Breach
This incident follows a previous data breach in 2020, where information of 270,000 Ledger customers was compromised through an e-commerce partner, Shopify, leading to a wave of phishing attacks. Despite the breach, Ledger reassured users that their hardware wallet devices remain secure and that private keys cannot be compromised through database breaches. However, the exposure of customer contact information poses a risk for sophisticated phishing attempts aimed at tricking users into revealing their recovery phrases.
In a related incident, BtcTurk, Turkey's largest cryptocurrency exchange, reported a significant security breach resulting in the theft of over $40 million from its hot wallets. For more details, see the full report here.
