A database containing the personal information of over 270,000 Ledger customers has been published on RaidForums. RaidForums is an online marketplace for buying, sharing and selling hacked information. The database, reviewed by the Block, contains the email addresses, physical addresses, and phone numbers of Ledger hardware wallet buyers.
The serious leak is a result of a data breach the wallet company suffered back in June which also revealed the email data of over a million Ledger customers. The breach back in June was publicly revealed in July with the company stating that customer data had been compromised.
Ledger noted at the time that 9500 customers had had their information leaked out. The latest breach is a more serious one with way more than 9,500 Ledger customers affected. A spokesperson said that the company had anticipated more customer information being put out there in the first breach but that didn’t turn out to be the case.
“At the time of the incident, logs from a third-party application managing our database showed 9,500 individuals were impacted. Simultaneously, we were working with an external security organization to conduct a forensic review, which also confirmed 9,500 people, all of whom were personally contacted by Ledger Support. Since the phishing attacks started to occur, we anticipated more information could have been leaked and continued to notify all users via Twitter and email,” the spokesperson said.
In a tweet, Ledger stated that as they review the latest breach early signs point to a relation between this breach and the June hack. The company also added;
“It is a massive understatement to say we sincerely regret this situation. We take privacy extremely seriously”
The statement also added that the company had learned valuable lessons from this situation which will make the company better.
“Avoiding situations like this are a top priority for our entire company, and we have learned valuable lessons from this situation which will make Ledger even more secure.”
Gaining public trust is hard to achieve and maintain it after such occurrences can be even tougher but Ledger seems to be ready for the task.
Image Courtesy of Pexels