TechFlow, May 19 — @evilcos has warned of a phishing attack targeting Ledger hardware wallet users that has been prevalent since 2021. Attackers use leaked data to mail counterfeit Ledger devices to victims and trick them into transferring their seed phrases from legitimate wallets to fake device apps through carefully crafted counterfeit user manuals, thereby stealing digital assets.
This type of attack includes multiple variants, such as providing fake instructions with preset seed phrases or potentially tampering with random number generators. Experts note that although such physical attacks may seem implausible, when combined with social engineering and impersonation of authoritative figures (e.g., CEOs), they can achieve high success rates—particularly against hardware wallet users holding substantial assets—especially by exploiting users' panic.
