Trezor and Ledger users have recently been targeted again by phishing attacks carried out through "fake official letters."

DeepFlowTech · 2026-02-17T03:31:44+00:00

Latest reports indicate that users of the crypto hardware wallets Ledger and Trezor are once again receiving phishing emails attempting to steal seed phrases. These emails disguise themselves as authentication requests, contain QR codes, and direct users to malicious websites. Such attacks are not new; there have been multiple data breaches in the past.

DeepFlowTech

2026-02-17 03:31:44

Abstract generation in progress

Deep Tide TechFlow News, February 17 — According to Cointelegraph, users of cryptocurrency hardware wallets Ledger and Trezor have once again received targeted phishing emails attempting to steal their seed phrases. Cybersecurity expert Dmitry Smilyanets reported on February 13 that he received an email impersonating Trezor, requesting users to perform an “identity verification check” before February 15, or their devices would be restricted.

These phishing emails contain holograms and QR codes; scanning them directs users to malicious websites that mimic Ledger and Trezor’s setup pages, tricking users into entering their wallet seed phrases. The emails falsely bear the signature of Trezor CEO Matěj Žák but incorrectly refer to him as “Ledger CEO.”

It is worth noting that this is not the first time such attacks have occurred. Ledger and its third-party partners have experienced multiple large-scale data breaches in recent years, resulting in the exposure of customer information such as physical addresses. Trezor also reported a security vulnerability in January 2024 that exposed contact information of approximately 66,000 customers.

View Original

This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.