Hacker tried to access Ledger users’ seed phrases through a Discord server
On behalf of a moderator, he published fake news about the company’s security hack
12.05.2025 - 12:40
358
3 min
0
What’s new? The Discord server of Ledger, a French hardware crypto wallet manufacturer, was hacked. The attacker gained access to the server moderator’s account to use it to seize seed phrases from subscribers’ wallets.
What else is known? The hacker, on behalf of the moderator, published a fake announcement on the server about a discovered security vulnerability and urged users to check their seed phrases via a malicious link. This was supposedly to ensure the safety of their funds. Clicking the link and entering the passphrase would result in the loss of access to the wallet and all assets.
The server hack was also brought to the attention of the founder and former CEO of the largest crypto exchange Binance, Changpeng Zhao, known under the nickname CZ. He urged users to never and under any pretext hand over their phrases to restore access to wallets.
He also noted that crypto companies’ social media accounts are their most vulnerable spots.
More often than not, it is social networks, not internal security systems, that are being hacked to promote scam tokens or obtain sensitive customer data.
Ledger officials later said they regained control of the server and removed the fake message. They urged to follow official updates only through Ledger’s website and X account.
Ledger users have been attacked many times recently. Last month, the company confirmed instances of physical emails being sent to users on its behalf to steal seed phrases. In the email, the scammers write that the company is supposedly conducting a critical security update and users need to validate their recovery phrases to ensure their assets are protected.
Last month, analysts at IS firm Silent Push noticed that hackers from the DPRK created shell companies to attack blockchain developers. They spread malware during calls under the pretense of a job interview.
Useful material?
Incidents
Developers warned of potential risks to bridges across the ecosystem and asked exchanges for assistance.
Jun 22, 2026
Incidents
The defendant helped move funds stolen through investment scams and earned at least $4 million for his role in the operation.
Jun 10, 2026
Incidents
The company is linking the incident to a compromised private key on a service wallet, rather than a smart contract exploit
May 22, 2026
Incidents
Following the incident, the project temporarily halted trading operations and node activity.
May 15, 2026
Incidents
The user spent weeks unsuccessfully trying to guess the password until Claude helped find an old wallet backup file
May 14, 2026
Crypto regulations
Authorities are introducing mandatory registration for companies handling cross-border crypto transactions
May 8, 2026


Telegram
Twitter