Recommended

#BTCCOGWEEK: Celebrate the Classics of Meme Coins
Crypto Deposit Make instant crypto transfers to your futures account
USDT-M Perpetual Futures Trade futures contracts settled in USDT
VIP Fee Discounts Enjoy different fee discounts based on your VIP level
Coin-M Perpetual Futures Trade futures contracts settled in cryptocurrency
Fiat Deposit Buy your favourite coins in seconds
Affiliates Invite friends & get rewarded
Convert Covert your crypto instantly
Support Centre Find our FAQs here
Announcements Find all our official announcements
BTCC Academy Learn about blockchain and crypto
News The latest trends in the crypto market

Promotions

Referral
Campaigns
Assets
Crypto Deposit
Fiat Deposit
Convert
Transfer
Withdraw
My vouchers
Fund history
Dashboard
Account Security
Identity verification
API Management
Transaction Report
Log out
Register
BTCC / BTCC Square / Tronweekly /
Ledger Sounds Alarm: Scam Letters Targeting Crypto Users’ Seed Phrases in Wild

Ledger Sounds Alarm: Scam Letters Targeting Crypto Users’ Seed Phrases in Wild

Author:
Tronweekly
Published:
2025-04-30 15:00:00
6
2

Hardware wallet giant Ledger fires warning shots—fraudsters are mailing fake ’security alerts’ demanding seed phrases. Classic ’give us your keys’ scam, now with postal service efficiency.

How it works: Victims receive physical letters impersonating Ledger, complete with ominous warnings about ’compromised devices.’ The hook? A demand to hand over recovery phrases—the crypto equivalent of handing a burglar your safe combination.

Why it matters: Seed phrases are the ultimate backdoor. Disclose them, and your crypto might fund some scammer’s Lambo—while you’re stuck explaining to the FSA why your life savings now live on a Seychelles-bound blockchain.

Bottom line: If any letter, email, or ’support agent’ asks for your seed phrase, it’s a scam. Even your bank wouldn’t be this blatant—and that’s saying something.

Ledger

  • Ledger users are being targeted by scammers sending fake physical letters that mimic official communications, asking for their seed phrases.
  • The scam letters appear legitimate, using Ledger’s logo, business address, and threats of account deactivation to pressure recipients.
  • This phishing attempt may be connected to the 2020 Ledger data breach that exposed over 270,000 customers’ personal details, including home addresses.

There’s a new crypto scam in town, and it involves sending physical letters to individuals who own Ledger crypto hardware wallets. In the letter, the perpetrators are asking these individuals to confirm their private seed phrases.

If they do, the scammers will access their wallets and withdraw all their funds. Recently, tech commentator Jacob Canfield shared his experience of receiving one of such letters on X.

According to him, he received the letter in his home post box, and the letter looks it is truly from the crypto hardware wallet provider. The letter claimed that there’s a need to validate Canfield’s device and that he should  scan a QR code and enter his wallet’s private recovery phrase.

As a proof of that the letter was not fake, it had Ledger’s logo, business address and a reference number. The letter also stated that Canfield could lose access to his wallet and funds should he fail to comply with the ‘validation process.’

AD 4nXdI9jPxiaKO7JOkE1EIQ4cQIz8Wx8PnLgwuH zJ0zxaQFwTVXzTBvBL dqCYGjgLp1YzpndH25QTzfrYRYYgw9hovEAIZ 1NnZkiGQT2JL6GHHfl2RMJtzJkBfRds9f1armKKc?key=MAFtgkIt4OHhqbU4dvGFJtij

Source: X (@JacobCanfield)

A seed or recovery phrase contains up to 24 words that open access to a crypto wallet. Hence, anyone (including a scammer) with a wallet’s seed phrase can access it, perform transactions or transfer funds out of the wallet.

Ledger responded to Canfield’s tweet, stating that the letter is a scam and warned its users to be on guard against phishing attempts.

 Is There a Possible Connection to the Ledger Data Leak?

Canfield claimed that the company’s customers whose data were leaked about 5 years ago were the largest receivers of these scam letters. Five years ago, Ledger admitted that a hacker accessed its database illegally and released the personal information of over 270,000 of the firm’s customers online.

The information included the customers’ home addresses, phone numbers and names. A year later, a report by Bleeping Computer claimed that many Ledger users stated that they received Ledger devices in their post boxes without requesting them.

The report added that the design of the devices had been modified and contained malware which would become active upon use.

|Square

Get the BTCC app to start your crypto journey

Download on the App Store GEI IT ON Google Play

Get started today Scan to join our 100M+ users

Exchange for a better future

Products
Services
Guides
About Us
Terms & Agreement
Customer Service
Social Media

Risk warning: Digital asset trading is an emerging industry with bright prospects, but it also comes with huge risks as it is a new market. The risk is especially high in leveraged trading since leverage magnifies profits and amplifies risks at the same time. Please make sure you have a thorough understanding of the industry, the leveraged trading models, and the rules of trading before opening a position. Additionally, we strongly recommend that you identify your risk tolerance and only accept the risks you are willing to take. All trading involves risks, so you must be cautious when entering the market.

The world’s longest-running cryptocurrency exchange since 2011 © 2011 - 2025 BTCC.com. All rights reserved