Beware of phishing attacks, Ledger will never ask for the 24 words of your recovery phrase. Never share them. Learn more

Beware of phishing attempts

Ledger users are continuously targeted by phishing attacks on social media, search engines and via email. Attackers are able to perfectly imitate Ledger's website, content or applications to lure users into entering their 24-word recovery phrase. Please be very cautious. If you're asked to provide your recovery phrase OR to send crypto assets, it's a malicious attack.

  Security best practices

  • Reminder: Anyone with access to your 24-word recovery phrase can take your assets.
  • Never enter your 24-word recovery phrase anywhere else than on your Ledger device.
  • Ledger will never ask you for your 24-word recovery phrase.
  • Only use our official contact form at ledger.com/support.

We strongly encourage affected users to file a police report in their jurisdiction. Should you have any doubts or if you think you might be targeted by a phishing attempt, please contact us immediately: https://support.ledger.com/hc/requests/new

Examples of malicious attacks

Fake Chrome applications

Beware of malicious Chrome applications pretending to be from Ledger!

chrome-store-scams.pngchrome-app-scam.png

Fake YouTube live streams

We have faced phishing attacks using hacked YouTube accounts. Ledger is not affiliated with this and we've reported these accounts to YouTube. We encourage our users to report them as well and contact local police if needed.

scam_youtube.png

Phishing websites

scam-seed.png

Never enter your confidential 24-word recovery phrase on any other device than your Ledger hardware wallet!

scam-bip39.png

6.png

Phishing emails

Beware of fake emails impersonating Ledger pushing malicious software! 

scam-vulnerability.png

 

Fake recovery applications

rng-checker.png

Never enter your recovery phrase on any other device than your Ledger hardware wallet

recovery-scam.png

Detect phishing websites

Install the MetaMask browser extension to get a warning when visiting a domain that's been reported as a malicious website. 

detection.png

 

Was this article helpful?