Ledger Profile picture
20 Dec, 9 tweets, 2 min read
Today we were alerted to the dump of the contents of a Ledger customer database on Raidforum. We are still confirming, but early signs tell us that this indeed could be the contents of our e-commerce database from June, 2020.
We were aware of this data breach, alerted the authorities, our users, and have been fighting downstream attacks ever since. For more information on this breach, please see the original entry in our FAQ:
support.ledger.com/hc/en-us/artic…
It is a massive understatement to say we sincerely regret this situation. We take privacy extremely seriously. Avoiding situations like this are a top priority for our entire company, and we have learned valuable lessons from this situation which will make Ledger even more secure
Since July, we have done everything possible to make Ledger stronger for the future. We have hired a new Chief Information Security Officer (CISO). We are further hardening our already strong systems and have thoroughly reviewed our data policy.
We executed penetration tests and forensic analysis with external security firms to test these and find any additional vulnerabilities on our e-commerce systems.
We are continuously working with law enforcement to prosecute hackers and stop these scammers. We have taken down more than 170 phishing websites since the original breach.
We have notified the French data protection authority regarding the data breach and are working with other data protection authorities across the world. Our Customer Support team is working 24/7 to answer your questions.
We have set up a webpage sharing the anatomy of these phishing attacks so you can avoid falling for them and report any new attacks you receive: ledger.com/phishing-campa…
MOST IMPORTANTLY: Never share the 24 words of your recovery phrase with anyone, even if they are pretending to be a representative of Ledger. Ledger will never ask you for them. Ledger will never contact you via text messages or phone call.

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Ledger

Ledger Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @Ledger

29 Jul
A researcher participating in our bounty program made us aware of a potential data breach in our marketing database.

We immediately investigated and fixed it. 

Your payment information and crypto funds are safe. 

More details: bit.ly/2P35GZU
This breach affected our customers’ contact details, mostly email addresses.

No payment information, no credentials, no crypto funds were concerned.

Your funds are safe and have not been compromised. You are the only in control of your crypto.
Be mindful of phishing attempts by malicious scammers - never give your 24 words recovery phrase. Ledger will never ask for it.
Read 4 tweets
18 May
[Important Thread]
5 things you should know when starting your crypto journey:

1/ What is Bitcoin - bit.ly/2LCGLeb

Unroll ⬇️ and share this thread to help #newcomers with entering the #Crypto world!
2/ Manage your private keys, #own your crypto - bit.ly/3bG3bpv
3/ #Secure your crypto the best way - bit.ly/3cCFtf3
Read 5 tweets

Did Thread Reader help you today?

Support us! We are indie developers!


This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!

Follow Us on Twitter!