Disclaimer: Information found on CryptoreNews is those of writers quoted. It does not represent the opinions of CryptoreNews on whether to sell, buy or hold any investments. You are advised to conduct your own research before making any investment decisions. Use provided information at your own risk.
CryptoreNews covers fintech, blockchain and Bitcoin bringing you the latest crypto news and analyses on the future of money.
A fresh wave of phishing emails is aimed at Ledger hardware wallet users, seeking to unlawfully acquire their cryptocurrency.
The deceptive messages are designed to trick users into enabling a counterfeit security feature referred to as “Ledger Clear Signing,” which scammers assert is essential for the ongoing use of Ledger devices.
This phishing initiative, with a cutoff date of October 31, warns users that neglecting to activate this feature will hinder their ability to use their devices securely.
Phishing Emails Direct Users to Malicious Website
The emails, which do not originate from official Ledger addresses, contain a harmful link that leads users to a fraudulent site.
“To maintain secure usage of your Ledger device, activating Clear Signing is compulsory starting November 1, 2024. This feature is crucial for safeguarding your assets against phishing attacks and increasingly sophisticated fraudulent activities,” the phishing communication states.
Phishing scams are crafted to deceive victims into disclosing sensitive information, such as private keys or passwords, which can grant scammers access to their cryptocurrency wallets.
In this scenario, the objective is to mislead users into clicking a link and granting access to their Ledger wallet, enabling the attackers to deplete their crypto assets.
Thomas Roccia, a senior threat researcher at Microsoft, characterized the current email campaign as a “very clean Ledger scam.”
Roccia noted that the scam link redirects users to a URL with no connection to Ledger, underscoring the necessity of steering clear of dubious links.
Very clean Ledger scam!
cc: @LedgerCybersec @cryptoShields pic.twitter.com/I1h5PX8dfC
— Thomas Roccia
(@fr0gger_) October 15, 2024
(@fr0gger_) October 15, 2024Phishing attacks within the cryptocurrency sector are increasingly common and financially damaging.
Related Posts
In May 2024, a notable phishing scam led to a trader losing $71 million in cryptocurrency.
Such occurrences underscore the escalating sophistication of phishing methods and the significant financial repercussions that can arise.
Crypto Users Lose $46M to Phishing Scams in September
Phishing attacks continue to pose a significant challenge for crypto users, resulting in considerable losses.
In September alone, over 10,000 individuals lost more than $46 million to these scams, according to Scam Sniffer, a Web3 anti-scam platform.
The platform disclosed that 10,805 victims experienced losses totaling $46.7 million from various crypto phishing scams last month.
Recently, it was reported that cybersecurity scammers are employing automated email replies to infiltrate systems and deploy stealthy crypto mining malware.
This follows another malware threat identified in August.
The “Cthulhu Stealer,” which impacts MacOS systems, similarly masquerades as legitimate software and targets personal data, including MetaMask passwords, IP addresses, and cold wallet private keys.
In a separate case, a fraudulent crypto wallet application on Google Play has swindled $70,000 from users in a sophisticated scam that has been labeled a world-first for exclusively targeting mobile users.
The malicious app, named WalletConnect, imitated the reputable WalletConnect protocol but was, in reality, a complex scheme to drain crypto wallets.
The post Scam Emails Target Ledger Users with Fake ‘Ledger Clear Signing’ Feature appeared first on Cryptonews.
