I knew Ledger was hacked weeks ago because I got a phishing mail asking me to provide my 24-word phrase, WTF?
Then, I got the following mail this morning from Ledger...
"Dear client,
We're sorry to inform you that Ledger has fallen victim to a cyber attack and that confidential data belonging to approximately 272,000 customers has been illegally obtained by an unauthorized third party.
You're receiving this e-mail because the Ledger wallet associated with your e-mail address (my email here) has been found within those affected by the breach.
To be more specific, on December 20th 2020, members of our forensics team have detected malicious software installed on one of the Ledger Live's administrative servers.
Despite our relentless efforts, as of today, it's technically impossible to make an accurate assessment of the severity of this data breach. Due to these circumstances, we must assume that your funds could be at risk of theft.
If you're receiving this e-mail, it's because you've been affected by the breach. In order to protect your assets, please download the latest version of Ledger Live and follow the instructions to set up a new PIN for your wallet.
Sincerly,
Ledger"
First of all, this email itself looks fake to me.
Because :
1. A misspelling within the mail.
2. I don't think i can ever trust anything from Ledger.
3. There's a download link below the mail requesting me to update my ledger live software which redirects to ...
https://kaizencoin.io/mail/1d006efae69fe28c72aee94e8c6215b8
Disclaimer: Do not open the link for your safety. Mozilla Firefox, warns it's a phishing site!
From now on, i don't think any email from Ledger should be trusted because i can fall victim of a phishing attack.
Thus, I'm putting Ledger mails to SPAM to prevent myself from further phishing and social engineering attacks.
Perhaps, I should create new email for my safety since my current email has been exposed on a hacking forum.
What do you guys think we should do about the current Ledger Data Breach? thanks