Ledger Data Breach Tied to Shopify Employees, 10 BTC Reward Offered
Sensitive data of Ledger Wallet consumers was exposed last month, with hackers accessing e-commerce and marketing databases. Today, Ledger disclosed that rogue employees of Shopify, its e-commerce partner, were involved in the breach. The company is taking swift action, including offering a 10 BTC reward for information leading to the perpetrators.
Details of the Ledger Data Breach
In the latest blog post, Ledger identified that two Shopify employees gained unauthorized access to its database.
- Timeline of Breach: The breach occurred between April and June 2020, compromising sensitive details like names, shipping addresses, and phone numbers of approximately 292,000 Ledger customers.
- Data Misuse: Hackers leaked this data online, which has since been exploited in phishing attacks and ransom threats targeting Ledger customers.
Action Taken Against Shopify Employees
Ledger has filed a formal complaint against the Shopify employees with the French public prosecutor.
- The company is working with Orange Cyberdefense and Chainalysis to track cryptocurrency wallets associated with phishing activities.
- So far, 216 phishing websites targeting Ledger customers have been taken down, thanks to Ledger’s collaboration with Corsearch.
Ledger’s Bounty Offer: 10 BTC for Leads
To identify and prosecute the perpetrators, Ledger has announced a 10 BTC bounty for credible information leading to those responsible for the breach.
The company hopes this incentive will accelerate the identification of bad actors and help prevent further harm to its customers.
Ledger’s Security Enhancements
In response to the breach, Ledger has implemented several measures to safeguard customer data:
- Minimized Data Retention: Ledger will now retain sensitive data for the shortest time possible.
- Improved Communication Protocols: A secure messaging protocol will be integrated into Ledger Live, reducing reliance on emails.
- Order Confirmation Security: The company will strip sensitive information from order confirmation emails to prevent leaks through third-party e-commerce providers.
Impact on Ledger Customers
The breach has left customers vulnerable to:
- Phishing Scams: Fraudulent emails and websites targeting victims with personalized details.
- Ransom Threats: Bad actors demanding payment to avoid further misuse of leaked data.
Ledger customers are advised to:
- Avoid clicking on suspicious emails or links.
- Report phishing attempts to Ledger’s support team.
- Regularly update their wallets and monitor for suspicious activity.
Conclusion
The Ledger Wallet hack highlights the growing risks in e-commerce partnerships and customer data management. With a bounty program, increased security measures, and legal action against Shopify employees, Ledger aims to restore trust and prevent future breaches.
To learn more about the innovative startups shaping the future of the crypto industry, explore our article on latest news, where we delve into the most promising ventures and their potential to disrupt traditional industries.
Disclaimer: The information provided is not trading advice, Bitcoinworld.co.in holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decisions.
