Crypto Hardware wallet provider Ledger has been successfully hacked and lost control over more than a million of customers datasets including contact and order information.

In a blog post published today (29/07/2020) ledger admits that an unauthorized third party could gain access to a part of the e-commerce and marketing database through an API key. An independent researcher which has participated in Ledgers bug bounty program informed Ledger on the 14th of July 2020 about the data breach. Since the data leak only affects only the databases mentioned above it does not affect the Hardware wallets. All affected customers will be notified by Ledger and the French company also calls on all users to be vigilant for phishing messages. Ledger will never ask you for the recovery phrase or any other passwords/seeds/keys!

Furthermore, Ledger notified the French authorities about the Data leak on the 17th of July and the investigation is still ongoing. Until now the data hasn't been found in the Darknet or on other 'Data-Marketplaces'.