Beware of phishing attacks, Ledger will never ask for the 24 words of your recovery phrase. Never share them. Learn more

How to verify the authenticity of Ledger Live?

This article will explain how to verify the authenticity of a Ledger Live installation package using Ledger Live Download Signatures on Windows / macOS / Linux.

Windows macOS Linux
  1. Open your browser, go to the Ledger website, select Download the app and download the Windows installation package.
  2. On your computer, open Windows PowerShell.

    mceclip0.png
  3. In the shell, type the command below to obtain the SHA-512 hash of the installation file you just downloaded:
    Get-FileHash "path/to/downloaded/ledger-live.exe" -Algorithm SHA512 | Format-List

     Make sure that the path to the downloaded ledger-live.exe installation file is wrapped with quotation marks "".

    mceclip1.png

  4. Copy the hash.
  5. Go to the Ledger Live Download Signatures page, press Ctrl+F, paste the hash you copied from PowerShell in the search bar and press Enter.

    If the search returns a hit, it's a match! 
     SHA-512 hashes are not case-sensitive so a == A, b == B, etc.

    mceclip4.png

 The hashes don't match!

  • Your copy of Ledger Live might not be genuine.
  • Please immediately contact Ledger support, you will be provided with a safe link to install Ledger Live to the latest version.

Was this article helpful?