Scammers impersonate hardware wallet manufacturer Ledger, sending physical letters to crypto users instructing them to "verify" their wallets or risk restricted access to their funds, marking the latest phishing attack affecting the industry.

BitGo CEO Mike Belshe shared a photo of the scam letter, which included a QR code suspected to be linked to a malicious phishing site. According to the executive, the letter was sent via the United States Postal Service (USPS).

"These are scams, do not trust any such content," Troy Lindsey wrote after receiving a copy of the phishing letter.

Cointelegraph reached out to Ledger for comment but did not receive a response by the time of publication.

This phishing attempt highlights the complexity and evolving strategies of social engineering scams aimed at stealing crypto private keys, user funds, and other sensitive data from unsuspecting victims.

In April 2025, an elderly person was robbed of $330 million worth of Bitcoin (BTC) in a phishing attack, confirmed by on-chain detective ZackXBT in a post on X on April 30.

"The two suspects in the $330 million heist include 'Nina/Mo'—a Somali operating a phone scam center in Camden, UK, and an accomplice 'W0rk' who assisted with the website and calls," the on-chain security analyst stated in the update.

On May 15, crypto exchange Coinbase announced it had become a target of a ransom attempt after a customer service contractor (later fired by the company) leaked user data to threat actors.

The scammers demanded a ransom of $20 million, which Coinbase refused to pay. According to the exchange, the stolen data included names, addresses, contact information, and a small portion of other sensitive account data from some Coinbase customers.

The exchange stated that the leak did not involve private keys, login credentials, or access to Coinbase Prime accounts.

TechCrunch founder Michael Arrington strongly criticized the exchange's security lapse, arguing that it would lead to physical violence against customers exposed in the hacking incident.

Related: Cetus offers $6 million bounty after $220 million hack, Sui faces decentralization controversy

Original article: “Industry exec alarms over Ledger phishing letter sent via USPS”

免责声明：本文章仅代表作者个人观点，不代表本平台的立场和观点。本文章仅供信息分享，不构成对任何人的任何投资建议。用户与作者之间的任何争议，与本平台无关。如网页中刊载的文章或图片涉及侵权，请提供相关的权利证明和身份证明发送邮件到support@aicoin.com，本平台相关工作人员将会进行核查。