Hardware wallet provider Ledger confirmed that the discord server was again after an attack that compromised a moderator’s account to post scam links on May 11 to deceive users in disclosing their seed phrases on a third-party website.
“One of our contracted moderators compromised their account, allowing a malicious bot to post scam links on a channel,” Ledger team member Quintin Boatwright write to the Ledger Discord server.
“The issue is quickly enclosed: the compromised account was deleted, the bot was deleted, the website reported, and all the relevant permissions were reviewed and that was secured.”
Some members on Ledger’s Discord Channel claimed The attack abused the privileges of the moderator to ban and mute them as they tried to report the violation, perhaps slowing down Ledger’s reaction.
Boatwright said security violations were an isolated incident and that Ledger has taken additional measures to strengthen its security at Discord, a chat platform used by many crypto projects to share protocol developments and engage in their community.
Using the compromised Ledger community manager account, the hacker told members of the Ledger Discord that there was a recent discovered weakness in the company’s security systems and strongly encouraged all users to verify their Recovery phrases with a link to the scam, According to In many screenshots shared with X.
Ledger users are asked to connect their wallets and follow the instructions on the screen.
It is unclear if anyone is affected by the security violation. The cointelegraph reached the ledger for the comment.
Ledger scammers send physical letters last month
In April, the scammers were Shipment of physical letters to those with -owned Of Ledger Hardware Wallets, they were asked to prove their private seed phrases in a bid to access and empty the purse.
Letter used by Ledger’s logo, business address and a reference number to feign legitimacy and asked users to scan a QR code and enter Wallet’s recovery phrase.
A Ledger user who received a letter wondering if scammers were sending letters to Ledger customers whose data was spread in July 2020.
Related: Jameson Lopp: Most do not realize how easy it is to take care of self
That incident saw a hacker Breach Ledger’s Database And discard personal information of more than 270,000 of its customers online, which includes names, phone numbers and home addresses.
The following year, many Ledger users said to be -mail Ledger’s fake devices That is to be -adopted and designed to install malware when used, bleeding computer reported At the time.
Magazine: Chatgpt a ‘Schizophrenia-Seeking Missile,’ AI scientists are preparing 50% death
