Topic: Stolen funds from Ledger Live? - page 2. (Read 335 times)

A troian in his pc?

It a quite big amount (actually near 50k euro) .

It is possible Someone who knows you knew that you had these crypro-currencies?

But try to remeber: are you sure that you haven't received any sms from LEDGER? This sms arrived me abount 1 mounth ago... So the period coincides

Zero-day exploits are not uncommon but I'm almost certain that whatever is stored on your computer cannot be used to steal your Bitcoins. The whole point of HW wallets is to block the attack vector from your computer. Connecting your Ledger to a computer should not compromise your seeds or your keys and it would not make a transaction for you unless you approve it on your Ledger.

Did you approve anything on the Ledger when you're using the Ledger Live?

At this moment in time, i don't think there are any vulnerability's described like this...

I was searching for a list of current vulnerability's, and ended up on sites like this one: https://wallet.fail/wallets/nanos/

IIRC, there used to be a vulnerability with app isolation earlyer this year, so you could be fooled to think you were signing (for example) an LTC tx, while in reality you were signing a BTC tx, but IIRC, even this vulnerability was very hard to exploit and if i'm not mistaken it was fixed.

However, ledger did suffer a big data breach, and it's users are constantly getting phishing mails, text messages,... Also, recently it seems like somebody succeeded in contaminating amazon's stock with pre-initialised device(s).

I'm not saying this is the case here... New vulnerability's get found all the time (well, not for hw wallets per sé, but in general) so in theory it is possible you fell victim to a new vulnerability. This being said: odds are bigger someone got their hands on your seed or your physical device...

EDIT: by the way, i'm not victim-blaming here... I'm relatively strict when it comes to opsec (not as strict as some other members, but still, i think i do OK), but a while ago i almost fell for an obvious scam myself: my grandmother passed away (she was 92 years old at the time, so i guess she had a full life) and while being numb after here passing i didn't pay as close attention as i usually do, and i almost fell for a trap...
What i'm trying to say: everybody has his weak moments... Never say it's impossible that you fell for a phishing attack or an evil maid attack, or an inventory attack.. It only takes one moment without your full attention to fall victim.

Thanks for your input.

2) To me the amount is high - 2.9 Bitcoins and some few Ethereums 10.0.

What do you mean by spying? What are the options really - is it possible to steal the coins from Nano S without having access to the recovery phrase and/or the USB device?

Sorry to heard your histoy, but just for undestrand: thieves have stolen a small or large amount from your ledger?

Why this answer is easy to understand:

1) If amount was small, it was probably a pissing attack and affected more people. Consider that some time ago I got some sms with Ledger as sender inviting me to do an update, which were a pissing attacks (I happened to receive two sms on my phone).

2) if amount was high,  it may have happened that some single person has spied on you, followed you in as far as knowledge of your wealth, until he could make the shot. In this latter case, perhaps you also have some hope of finding out who hit you.

Thanks for your quick input.

By nature I'm very skeptical and would never fall for a phishing email or something similar. I always check links etc. before I potentially click or do whatever action sender would like me to do.
I'm having my recovery phrase - the paper file - stored in my home office in a folder between random documents where only family have access. My intention was to move it to a bank box safe though. I haven't taken/uploaded a picture of the phrases. I simply don't get how this can happen and the interesting thing here is, that it happened just within short time after I was logged into Ledger Live (which was the first time in 4-5 months time).

Very odd and frustrating. :-(

Hej

What did you do last time you logged in? Did you send a transaction out from your wallet or something?

Where did you source the ledger from? Did it come from the official site or a reseller? Some report say resellers often don't check wallets are of original quality before being returned (eg they might have a mnemonic someone else noted down).

Also how long have you had the ledger.

Could you elaborate on how you kept your recovery phrase safe?

Most of the times a HW wallet gets robbed it's either:

• because somebody got their hands on your recovery phrase (most common)
• because somebody had physical access to your HW wallet (very rare)

The first option (somebody getting their hands on your recovery phrase) is usually caused by:

• a phising attack: for example an email telling you you were hacked, and urging you to visit a phising website where you're asked to enter your seed
• buying an initialised device instead of initialising it yourself
• the seed being stored online in some sort of cloud storage
• somebody having physical access to the paper (or other medium) containing your seed
• the seed being stored on any kind of online device that's fallen victim to a vulnerability or malware

As for getting your funds back: unless there's some kind of mistake (for example: you're looking at the wrong wallet, or you moved the funds yourself, or moving to a bech32 wallet, or splitting BTC-BCH) the odds of getting your funds back are slim to none... As soon as the tx created by the robber was confirmed, the only way of getting your funds back is if the robber sends it back (or if the police catch him and return your funds)

Hi All.

I hope you can help me in this quite critical situation.
Today this morning I logged in to my Ledger Live (using Ledger Nano S) to see how my Bitcoins and Ethereum had developed since I was logged in last time on 29th of October. Unfortunately my funds are gone - both currency balances are 0 and I can see in the transaction history that all my funds were sent away from my wallet on the 29th of October(!) with 7 minutes between the transactions. Probably within 30 minutes after I logged into the wallet.

I'm wondering how on earth this can happen since I have kept my recovery phrase safe?

I have obviously reported this as a crime to the Police here in Denmark as well as reached out to Ledger's Support through their standard formular. Awaiting their feedback.


In the meantime any advice and help would be much appreciated.



Regards