Discord Ledger Hack and Data Leaks: How Scammers Exploit Users’ Trust to Steal Cryptocurrency and What Security Measures Are in Place

In May 2025, cryptocurrency hardware wallet provider Ledger was in the spotlight again due to a major security incident. Hackers gained access to a moderator’s account on Ledger’s official Discord server and posted fraudulent links aimed at tricking users into revealing their recovery seed phrases, a key element of any hardware wallet’s security 1 2 3 .

How the Discord Ledger Hack Happened

On May 11, 2025, an attacker hacked the Discord account of one of the contract moderators of the Ledger server. Using the privileges he had gained, the hacker installed a malicious bot that began sending messages with phishing links. These links led to a third-party site, stylized as an official Ledger resource, where users were asked to “check” their recovery phrases, allegedly due to a vulnerability discovered in the company’s security systems 1 2 3 .

Actions of fraudsters

• The hacker announced a “critical vulnerability” and strongly recommended that all users undergo verification via the provided link.
• Users were asked to connect their wallets and follow instructions, which effectively resulted in their seed phrase being handed over to the scammers.
• Some community members tried to report the hack, but the attacker, with moderator powers, banned and muted them, which likely slowed down the response of the Ledger team 1 3 .

Ledger Reaction

The Ledger team quickly localized the problem:

• The hacked account has been deleted.
• The malicious bot has been eliminated.
• The fraudulent site was promptly blocked and a complaint was filed against it.
• All permissions and access rights on the server have been reviewed and tightened.
• Ledger spokesman Quintin Boatwright stressed that the incident was isolated and the company has implemented additional security measures on Discord 1 2 3 .

At the time of publication, it was not confirmed whether any users were affected by the incident 1 .

Discord as a Risk Point for Crypto Communities

Discord is a popular platform for communication and coordination of crypto communities, where technical details, news and security issues are discussed. That is why attackers often choose such platforms for targeted attacks on users, exploiting the trust in official communication channels 2 3 .

Phishing Attacks via Physical Mail and Ledger Discord Server Hack and New Fraud Schemes: All the Details of the Incidents

In April 2025, a new round of fraud was recorded: Ledger users began receiving physical letters, in which, under the guise of official correspondence from the company, they were asked to undergo “mandatory wallet validation” 4 5 6 7 .

What the scheme looked like

• The emails contained the Ledger logo, the company’s official address, and a unique reference number to add credibility.
• The letter stated that in order to maintain access to the funds, it was necessary to scan the QR code and enter your recovery phrase on a special website.
• The site was styled to look like the official Ledger support portal, but in reality it was a phishing resource created to steal seed phrases and then empty wallets 4 5 6 7 .

Causes of data leaks

Many victims received emails sent to addresses that were compromised in a major Ledger data breach in July 2020, which exposed a database of personal information for more than 270,000 of the company’s customers, including names, phone numbers, and home addresses .

The aftermath of the 2020 leak

• In 2020, hackers gained access to Ledger’s database containing customers’ personal data.
• This data was then used for targeted phishing attacks, including sending fake emails and even sending fake Ledger devices capable of installing malware 7 .
• Ledger publicly acknowledged the breach and reported it to regulators, and strengthened internal security measures, but the effects of the breach are still being felt today 8 9 10 .

Precautions for users

• Ledger will never ask for your seed phrase via email, chat, phone or physical mail. Any such request is a scam.
• Do not follow suspicious links, even if they are posted on official channels.
• Do not scan QR codes or enter your recovery phrases on third-party sites.
• If you receive any suspicious emails or messages, please report them immediately to Ledger support via the official website.

How Exactly Did the Attacker Gain Access to the Ledger Moderator’s Discord Account?

The Ledger Discord hack and mass phishing attacks via physical mail clearly demonstrate that even the most advanced companies and products in the crypto industry remain vulnerable to social and technical attacks. Users need to remain vigilant and strictly follow security recommendations to protect their assets from scammers 1 2 3 4 5 6 7 .

How an Attacker Gained Access to a Ledger Moderator’s Discord Account

At the time of publication, technical details about the hack of the Ledger moderator’s Discord account have not been officially disclosed. The following is known for certain:

• The hack was carried out through the account of one of the contract moderators, who had advanced rights on the Ledger server in Discord.
• Having gained access to this account, the attacker was able to use it to post phishing links, as well as to introduce a malicious bot that distributed messages with fraudulent content 1 2 3 .
• The hacker used his moderator privileges to block and mute users who tried to warn others about the scam, making it difficult for the Ledger team to respond in a timely manner 1 2 4 .

Possible methods of compromise

While Ledger does not disclose how exactly the moderator’s account was compromised, the most likely scenarios in such cases are:

• Phishing or Social Engineering : The moderator may have been the victim of a phishing email or message, causing them to enter their credentials on a fake site.
• Weak password or no two-factor authentication : If a moderator used a weak password or did not enable two-factor authentication, this could make it easier for an attacker to get in.
• Malware : The moderator’s device may have had malware installed that intercepts credentials.

Ledger has officially stated that following the incident, it has tightened access protocols for moderators and partners, as well as strengthened authentication systems for sensitive accounts 5 .

What security measures have been taken since the incident to protect Ledger users?

The exact technical method used to gain access to the moderator’s account has not been publicly disclosed. However, the nature of the attack and the company’s response point to the use of social engineering or phishing techniques, which are common in such hacks 5 1 2 .

Ledger Security Measures After Discord Incident

Following the hack of Ledger’s Discord server in May 2025, the company quickly implemented a number of measures to strengthen user protection and prevent similar attacks in the future.

Operational actions immediately after the incident

• Compromised Account Removal : The compromised moderator account was immediately removed from the server.
• Malicious Bot Blocked : All malicious bots that were distributing phishing links have been removed.
• Quick Complaint about a Phishing Site : The fraudulent site that was linked to was promptly blocked and a complaint was filed against it.
• Permission Review and Tightening : All permissions and permissions on the Discord server have been thoroughly reviewed and tightened to prevent repeat attacks 1 2 3 4 .

Strengthening security policy

• Review of moderator rights : An audit and tightening of internal access policies for all moderators and community partners was conducted.
• Multi-Factor Authentication Implementation : Increased requirement to use multi-factor authentication for sensitive accounts and employees 5 .
• Continuous threat monitoring : Continuous monitoring of activity on the server and other communication platforms has been introduced to quickly identify suspicious activities 5 .

Technical and organizational measures

• Improved encryption protocols : More modern methods of encryption of user data and internal communications have been implemented 5 .
• Moving to “Clear Signing” : Ledger is phasing out “Blind Signing” in favor of “Clear Signing” so that users can see the details of each transaction before confirmation 6 5 .
• Ledger Live Update : The latest versions of Ledger Live implement additional minor security improvements and vulnerability fixes 7 .

User information support

• Alerts and Education : Users are regularly reminded that Ledger never asks for seeds of any kind, and that any such requests are a scam.
• Security recommendations : The company publishes instructions on how to identify phishing attacks and recommends not to follow suspicious links, even if they are posted on official channels 3 8 .

General strategy

Ledger emphasizes that security is an ongoing process, and the company regularly reviews its standards, implements new technologies, and collaborates with experts to enhance user protection 9 5 .

In short: Since the incident, Ledger has strengthened access controls, implemented additional layers of authentication, updated internal protocols, and continues to educate users on cybersecurity practices.

How likely is it that any user was affected by phishing links in this case?

The likelihood that any Ledger users were affected by phishing links posted by the attacker on the Discord server remains uncertain, as no specific cases of compromise have been officially confirmed.

However, given the nature of phishing attacks and their effectiveness in general, the following conclusions can be drawn:

• Phishing links posted using the moderator account had a high level of trust among Ledger users, significantly increasing the risk that someone could click on the link and reveal their recovery seed phrases.
• Phishing is one of the most common and successful types of cyberattacks, especially when attackers use social engineering and trust in official communication channels, as was the case in this case 1 2 3 .
• In such attacks, even advanced users can mistakenly enter confidential data, since fraudulent sites are often carefully disguised as official resources 2 4 .
• At the same time, the Ledger team quickly localized the incident, removing the hacked account and malicious bot, and blocking the fraudulent site, which could limit the scope of damage.
• Some users reported attempts by the attacker to ban them while trying to warn the community, which could have slowed the response and increased the potential number of victims.

Thus, although there is no exact data on victims, the possibility that some users may have fallen victim to phishing cannot be ruled out. This is in line with the general statistics of phishing attacks, which often result in the compromise of confidential information and financial losses 5 6 .

Recommendation: Ledger users should be especially careful, never enter their seed phrases on third-party sites and only use official channels and applications to manage wallets.

Why Attackers Used Fake Vulnerability Alerts to Trick Ledger Users

The attackers used fake messages about a security vulnerability in Ledger’s systems to trick users into increasing trust and creating a sense of urgency, which significantly increases the likelihood that victims will reveal their recovery seed phrases.

The main reasons for using this tactic are:

• Creating the illusion of an official security alert : Messages were made to look like legitimate notifications from Ledger about a “critical vulnerability” or “data breach,” leading users to perceive the information as credible and important for immediate action 1 3 .
• Exploiting the fear of losing funds : The threat to the security of assets makes users anxious and wants to quickly protect their funds, which reduces their critical thinking and makes them act rashly 5 .
• Increased trust through stylization and personalization : Scammers carefully copied the design of official emails, including logos, addresses, unique codes, and even used personal data obtained from the 2020 Ledger leak. This created the illusion of legitimacy and increased psychological pressure 1 5 .
• Creating a sense of urgency and obligation : Messages often included deadlines for “checking” or “updating” security, encouraging users to quickly follow instructions without further verification 5 .
• Use of multi-stage attacks : Physical letters with QR codes and fake websites to which users were redirected created a complex scheme that combined offline and online deception methods, making the scam difficult to detect 5 .

Thus, the attackers used psychological social engineering techniques – authority, urgency, brand trust and fear of loss – to get Ledger users to voluntarily reveal their key data, which is the most effective way to steal cryptocurrency funds in such an environment 1 3 5 .

What are the implications for Ledger customers of past data breaches and fraud?

The implications for Ledger customers from past data breaches and fraud could be significant, even though the breach itself did not directly affect the security of hardware wallets.

The main possible consequences are:

• Increase in Phishing Attacks and Fraud
  The 2020 leak of Ledger customers’ personal data (including names, addresses, phone numbers, and emails) has given scammers the ability to create highly credible and targeted phishing campaigns. Attackers use this data to send fake emails and messages that look like official notifications from Ledger, significantly increasing the risk of users being tricked and having their recovery seeds stolen 1 5 6 .
• Physical scam emails
  Fraudsters sent carefully crafted emails with the Ledger logo, addresses, and QR codes, asking to complete a “mandatory security check” by entering a seed phrase. These emails create a false sense of urgency and legitimacy, which can lead to loss of funds 1 5 6 .
• Loss of funds due to seed phrase disclosure
  If a user enters their recovery phrase on a phishing site or following the instructions of scammers, the attackers gain full control over their crypto wallet and can withdraw all funds 5 .
• Fake Ledger Devices Sent
  In 2021, there were cases of fake Ledger hardware wallets being sent to users that contained malware to steal funds when used 5 .
• Loss of brand trust and increased complexity
  Leaks and fraud negatively impact Ledger’s reputation, which could lead to decreased user trust and increased complexity in customer communications 3 .
• No compensation from Ledger
  The company has officially stated that it does not plan to pay compensation to those affected by the data leak, as the leak itself did not affect the security of the wallets and is not a direct cause of the thefts 9 .

Summary

Although Ledger hardware wallets remain technically secure, the leak of users’ personal data and subsequent fraudulent campaigns pose significant risks to customers. The main threat is social engineering and phishing, which can lead to the loss of cryptocurrency through the disclosure of seed phrases. Users are advised to exercise extreme caution, not to disclose their recovery phrases, and not to trust suspicious emails and messages, even if they appear official 1 5 6 .

What are the long-term risks to Ledger customers from data breaches and fraud?

The long-term risks to Ledger customers from data breaches and fraud can be summarized as follows:

• Phishing Attacks Are Getting More Powerful and Personalized
  The 2020 leak of Ledger customers’ personal data (names, addresses, phone numbers, emails) has created the basis for more sophisticated and targeted scam campaigns. Fraudsters are using this information to create emails and messages that look as official as possible, significantly increasing the likelihood of tricking users into revealing their 24-word recovery phrases 1 2 6 .
• Constant threat of seed phrases being exposed and funds being lost
  Phishing emails, including physical ones, threatening to block access to funds and requiring “mandatory validation” of the wallet create psychological pressure and a false sense of urgency. This can lead to even experienced users mistakenly entering their keys on fraudulent sites, resulting in a complete loss of cryptocurrency 1 2 6 .
• Expanding fraud channels
  In addition to online phishing, fraudsters use offline methods – sending fake emails with QR codes and instructions, which complicates the recognition of the threat and increases the number of potential victims 1 2 6 .
• Decreased brand trust and increased complexity
  Multiple incidents of leaks and fraud are eroding user trust in Ledger, which could lead to users abandoning hardware wallets or switching to less secure alternatives due to fear of further attacks 1 2 .
• Long-term need for increased vigilance
  Users are forced to be constantly on guard, carefully checking any communication on behalf of Ledger, which creates an additional psychological and technical burden. It also requires constant updating of knowledge about new fraudulent schemes and adherence to strict security rules 1 2 .
• Risks Related to Human Factors and Contractors
  In addition to direct attacks on users, there is a risk of data compromise through Ledger’s partner organizations and contractors, which could lead to new leaks and fraudulent schemes 3 10 .

Thus, the long-term risks for Ledger customers are not so much related to the technical vulnerability of the wallets, but rather to the constant pressure from fraudsters using leaked personal data to create complex and convincing phishing attacks that can lead to the loss of funds and a decrease in trust in the service. Users are advised to exercise extreme caution, use multi-factor authentication and never reveal their recovery phrases.

1. https://yellow.com/ru/learn/%D0%B7%D0%B0%D1%89%D0%B8%D1%82%D0%B8%D1%82%D0%B5-%D1%81%D0%B2%D0%BE%D0%B9-ledger-%D0%BA%D0%BE%D1%88%D0%B5%D0%BB%D0%B5%D0%BA-%D0%BA%D0%B0%D0%BA-%D1%80%D0%B0%D1%81%D0%BF%D0%BE%D0%B7%D0%BD %D0%B0%D1%82%D1%8C-%D0%B8-%D0%B8%D0%B7%D0%B1%D0%B5%D0%B6%D0%B0%D1%82%D1%8C-%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D 0%B4%D0%BD%D0%B5%D0%B3%D0%BE-%D0%BC%D0%BE%D1%88%D0%B5%D0%BD%D0%BD%D0%B8%D1%87%D0%B5%D1%81%D1%82%D0%B2%D0%B0
2. https://coinspot.io/cryptocurrencies/ledger-preduprezhdaet-scammers-send-fake-letters-asking-to-enter-sid-phrase/
3. https://incrypted.com/top-5-risks-of-storing-cryptoactive-assets-on-exchanges/
4. https://www.binance.com/ru/square/post/23656336912442
5. https://vc.ru/crypto/1599680-kak-hakery-popytalis-vzlomat-kriptokoshelki-ledger-i-pochemu-u-nih-nichego-ne-poluchilos
6. https://yellow.com/ru/news/%D0%BF%D0%BE%D0%BB%D1%8C%D0%B7%D0%BE%D0%B2%D0%B0%D1%82%D0%B5%D0%BB%D0%B8-ledger-%D0%BD%D0%B0%D1%86%D0%B5%D0%BB%D0% B5%D0%BD%D1%8B-%D0%BD%D0%B0-%D1%84%D0%B8%D1%88%D0%B8%D0%BD%D0%B3%D0%BE% D0%B2%D1%83%D1%8E-%D0%B0%D1%82%D0%B0%D0%BA%D1%83-%D0%BF%D0%BE-%D0%BF%D0 %BE%D1%87%D1%82%D0%BE%D0%B2%D1%8B%D0%BC-%D0%BE%D1%82%D0%BF%D1%80%D0%B0% D0%B2%D0%BB%D0%B5%D0%BD%D0%B8%D1%8F%D0%BC-%D1%81%D0%B2%D1%8F%D0%B7%D0%B 0%D0%BD%D0%BD%D0%BE%D0%B9-%D1%81-%D1%83%D1%82%D0%B5%D1%87%D0%BA%D0%BE%D 0%B9-%D0%B4%D0%B0%D0%BD%D0%BD%D1%8B%D1%85-2020-%D0%B3%D0%BE%D0%B4%D0%B0
7. https://www.ledger.com/ru/6-%D1%81%D0%BF%D0%BE%D1%81%D0%BE%D0%B1%D0%BE%D0%B2-%D0%B1%D0%BE%D1%80%D1%8C%D0%B1%D1%8B-%D1%81-%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D1%81%D1%82%D0%B2%D0%B8%D1%8F%D0%BC%D0%B8-%D1%83%D1%82%D0%B5%D1%87
8. https://xygeni.io/ru/blog/the-ledger-attack-draining-hardware-cryptowallets/
9. https://shop.ledger.com/ru/pages/hardware-wallet
10. https://www.block-chain24.com/faq/kak-scammers-use-doverennye-platformy-dlya-kriptomoshennichestva

1. https://yellow.com/ru/learn/%D0%B7%D0%B0%D1%89%D0%B8%D1%82%D0%B8%D1%82%D0%B5-%D1%81%D0%B2%D0%BE%D0%B9-ledger-%D0%BA%D0%BE%D1%88%D0%B5%D0%BB%D0%B5%D0%BA-%D0%BA%D0%B0%D0%BA-%D1%80%D0%B0%D1%81%D0%BF%D0%BE%D0%B7%D0%BD %D0%B0%D1%82%D1%8C-%D0%B8-%D0%B8%D0%B7%D0%B1%D0%B5%D0%B6%D0%B0%D1%82%D1%8C-%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D 0%B4%D0%BD%D0%B5%D0%B3%D0%BE-%D0%BC%D0%BE%D1%88%D0%B5%D0%BD%D0%BD%D0%B8%D1%87%D0%B5%D1%81%D1%82%D0%B2%D0%B0
2. https://www.ledger.com/ru/6-%D1%81%D0%BF%D0%BE%D1%81%D0%BE%D0%B1%D0%BE%D0%B2-%D0%B1%D0%BE%D1%80%D1%8C%D0%B1%D1%8B-%D1%81-%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D0%B4%D1%81%D1%82%D0%B2%D0%B8%D1%8F%D0%BC%D0%B8-%D1%83%D1%82%D0%B5%D1%87
3. https://2bitcoins.ru/ledger-owners-and-cryptocurrency/
4. https://www.reddit.com/r/ledgerwallet/comments/1fw6af3/was_just_contacted_by_ledger_is_it_a_scam/?tl=en
5. https://www.block-chain24.com/news/novosti-bezopasnosti/vladelcy-ledger-poluchayut-ot-scammers-fizicheskie-fishingovye-pisma
6. https://www.rbc.ru/crypto/news/6812013e9a7947d8574eeb43
7. https://www.reddit.com/r/ledgerwallet/comments/1gq75gn/what_happened_re_the_ledger_hardware_wallet/?tl=en
8. https://www.ledger.com/ru/phishing-campaigns-status
9. https://2bitcoins.ru/ledger-ne-vyplatit-kompensatsiyu/

1. https://securenews.ru/novaya-fishingovaya-kampaniya-nacelena-na-polzovatelej-apparatnogo-koshelka-ledger/
2. https://www.binance.com/ru/square/post/24138036755002
3. https://www.binance.com/ru/square/post/24147244457585
4. https://cisoclub.ru/jevoljucija-fishinga-i-krazh-v-ledger-live-ugrozy-2024-goda/
5. https://yellow.com/ru/learn/%D0%B7%D0%B0%D1%89%D0%B8%D1%82%D0%B8%D1%82%D0%B5-%D1%81%D0%B2%D0%BE%D0%B9-ledger-%D0%BA%D0%BE%D1%88%D0%B5%D0%BB%D0%B5%D0%BA-%D0%BA%D0%B0%D0%BA-%D1%80%D0%B0%D1%81%D0%BF%D0%BE%D0%B7%D0%BD %D0%B0%D1%82%D1%8C-%D0%B8-%D0%B8%D0%B7%D0%B1%D0%B5%D0%B6%D0%B0%D1%82%D1%8C-%D0%BF%D0%BE%D1%81%D0%BB%D0%B5%D 0%B4%D0%BD%D0%B5%D0%B3%D0%BE-%D0%BC%D0%BE%D1%88%D0%B5%D0%BD%D0%BD%D0%B8%D1%87%D0%B5%D1%81%D1%82%D0%B2%D0%B0
6. https://forklog.com/news/ataka-na-doverie-kak-poddelnyj-soft-dlya-ledger-live-kradet-kriptovalyutu-i-chto-s-etim-delat
7. https://www.block-chain24.com/faq/kak-scammers-use-doverennye-platformy-dlya-kriptomoshennichestva
8. https://www.acrit-studio.ru/technical-support/kiber/zachem-vash-sayt/
9. https://cisoclub.ru/macos-stealer-mentalpositive-novoe-pokolenie-atak-na-ledger-live/
10. https://support.ledger.com/ru/article/7624842382621-zd

1. https://www.ssldragon.com/ru/blog/what-is-phishing-attack/
2. https://www.tadviser.ru/index.php/%D0%A1%D1%82%D0%B0%D1%82%D1%8C%D1%8F:%D0%A4%D0%B8%D1%88%D0%B8%D0%BD%D0%B3_(phishing)
3. https://www.kaspersky.ru/resource-center/threats/handling-phishing-attacks
4. https://te-st.org/2023/04/13/fishing/
5. https://ptsecurity.com/ru-ru/research/analytics/kakimi-budut-fishingovye-ataki-v-blizhaishem-buduschem/
6. https://www.kaspersky.ru/resource-center/preemptive-safety/phishing-prevention-tips
7. https://securelist.ru/spam-and-phishing-in-2020/100408/
8. https://pro32.com/ru/article/chto-takoe-fishing-i-kak-ego-raspoznat/
9. https://teenage.by/article/internet-ugrozy-kak-raspoznat
10. https://ibs.ru/media/chto-delat-esli-popalsya-na-fishing/

1. https://cointelegraph.com/news/ledger-discord-channel-secure-after-security-breach
2. https://www.binance.com/en/square/post/05-12-2025-ledger-restores-security-on-discord-server-after-hack-24132819794201
3. https://www.theblock.co/post/353880/ledger-restores-control-of-discord-after-hacker-compromised-moderator-account
4. https://crypto-economy.com/ledger-tightens-security-after-moderator-account-breach-on-discord/
5. https://www.linqto.com/unicorn-news/ledger-news-bybit-hack-spurs-ledgers-security-enhancements/
6. https://www.binance.com/ar/square/post/1640850932065
7. https://support.ledger.com/article/What-s-new-in-Ledger-Live
8. https://www.hardware-wallets.net/faq/is-ledger-still-safe/
9. https://cryptorank.io/news/feed/a4cc8-ledger-ceo-on-security-vulnerabilities
10. https://www.reddit.com/r/CryptoCurrency/comments/1klpbr3/ledger_secures_discord_after_hacker_bot_tried_to/
11. https://blockworks.co/news/ledger-victims-being-made-whole
12. https://news.bit2me.com/en/ledger-prepara-nuevo-sistema-de-seguridad-para-datos
13. https://www.cryptotimes.io/2025/05/12/ledger-confirms-discord-breach-users-targeted-by-bot/
14. https://www.cointribune.com/en/changpeng-zhao-warns-after-the-hacking-of-ledgers-discord/
15. https://developers.ledger.com/docs/news
16. https://www.altcoinbuzz.io/cryptocurrency-news/ledger-stops-discord-hack-aimed-at-stealing-seed-phrases/
17. https://www.ledger.com/ru/blog-privacy-security-at-ledger-a-year-in-review
18. https://www.cryptoninjas.net/news/cz-sounds-alarm-after-ledger-discord-hack-exposes-users-to-phishing-trap/
19. https://www.reddit.com/r/Metamask/comments/1kh28m3/is_ledger_still_the_most_trusted_cold_wallet_in/
20. https://www.mitrade.com/au/insights/news/live-news/article-3-813814-20250512

1. https://www.theblock.co/post/353880/ledger-restores-control-of-discord-after-hacker-compromised-moderator-account
2. https://cointelegraph.com/news/ledger-discord-channel-secure-after-security-breach
3. https://crypto.news/crypto-wallet-maker-ledger-regains-control-of-discord-after-phishing-attack/
4. https://icoholder.com/en/news/ledger-regains-control-of-discord-after-phishing-attack
5. https://www.cointribune.com/en/changpeng-zhao-warns-after-the-hacking-of-ledgers-discord/
6. https://www.reddit.com/r/CryptoCurrency/comments/1klpbr3/ledger_secures_discord_after_hacker_bot_tried_to/
7. https://www.binance.com/en/square/post/24123694531810
8. https://www.ainvest.com/news/ledger-secures-discord-hacker-compromises-moderator-account-2505/
9. https://cryptorank.io/news/feed/1e733-hackers-target-ledgers-discord-server-with-phishing-attack-that-extracts-users-seed-phrases
10. https://crypto-economy.com/ledger-tightens-security-after-moderator-account-breach-on-discord/
11. https://cryptorank.io/news/feed/e4799-ledger-regains-control-of-discord
12. https://m.fastbull.com/en/news-detail/hackers-target-ledgers-discord-server-with-phishing-attack-news_6100_0_2025_2_9682_3
13. https://www.binance.com/en/square/post/24150368392938
14. https://cryptonews.com/news/ledger-records-discord-after-phishing-scam-hits-moderator/
15. https://coinfomania.com/cz-warns-crypto-users-after-ledger-discord-admin-hacked-in-phishing-attack/
16. https://www.bitget.com/news/detail/12560604752139
17. https://www.tradingview.com/news/zycrypto:252d764b0094b:0-hackers-target-ledger-s-discord-server-with-phishing-attack-that-extracts-user-s-seed-phrases/
18. https://www.bitget.com/news/detail/12560604751786
19. https://www.ainvest.com/news/ledger-secures-discord-server-moderator-account-breach-2505/
20. https://coinpaper.com/9026/hackers-exploit-ledger-moderator-account-to-spread-phishing-links

1. https://cointelegraph.com/news/ledger-discord-channel-secure-after-security-breach
2. https://www.binance.com/en/square/post/24147241377513
3. https://www.bitget.com/news/detail/12560604752139
4. https://www.theblock.co/post/352479/ledger-confirms-physical-scam-letters-requesting-seed-phrase
5. https://klever.io/blog/ledger-physical-letter-scam/
6. https://bitcoinnews.com/adoption/ledger-wallet-physical-mail-scam/
7. https://www.cryptopolitan.com/ledger-users-receive-scam-messages/
8. https://cryptonews.com/news/ledger-promises-funds-insurance-as-client-data-leak-expands-8893/
9. https://www.infosecurity-magazine.com/news/crypto-firm-ledgers-breach-one/
10. https://www.ledger.com/message-ledgers-ceo-data-leak
11. https://www.reddit.com/r/CryptoCurrency/comments/1klpbr3/ledger_secures_discord_after_hacker_bot_tried_to/
12. https://forklog.com/news/ledger-vosstanovil-kontrol-nad-discord-posle-ataki-hakerov
13. https://cryptorank.io/news/feed/ef96d-ledger-records-discord-after-phishing-scam-hits-moderator
14. https://www.ainvest.com/news/ledger-users-targeted-phishing-scam-usps-2505/
15. https://m.fastbull.com/en/news-detail/hackers-target-ledgers-discord-server-with-phishing-attack-news_6100_0_2025_2_9682_3
16. https://www.ledger.com/blog/update-efforts-to-protect-your-data-and-prosecute-the-scammers
17. https://support.ledger.com/article/I-received-a-Letter-in-the-Mail-from-Ledger
18. https://www.altcoinbuzz.io/cryptocurrency-news/ledger-stops-discord-hack-aimed-at-stealing-seed-phrases/
19. https://finway.com.ua/en/new-type-ledger-wallet-scam/
20. https://cointelegraph.com/news/ledger-scammers-send-letters-steal-recovery-seed-phrases