Data Breach at Popular Hardware Crypto Wallet Ledger Affects Million; Trezor Fires Shots

1 million email addresses and 9,500 detailed personal information of Ledger customers leaked but payment information and crypto funds have been safe. The breach has been fixed and an internal investigation has been conducted.

Popular crypto hardware wallet Ledger reported the leak of 1 million email addresses and 9,500 detailed personal information of its customers.

Ledger's competitor, Trezor, took this opportunity to advertise, “After 90 days, we get rid of all sensitive data about your order in our e-shop database (even e-mail addresses),” complete with promo code “DATAPRIVACY” to offer a discount on its products. But it's limited to 9500 users.

The company came to know of the data breach on July 14th when a researcher participating in Ledger’s bounty program made them aware of it; Ledger shared in its official report. Ledger immediately fixed the breach and conducted an internal investigation.

Now, a week after patching the breach, the company discovered the vulnerability had been exploited on June 25th by an unauthorized third party. The entity accessed Ledger’s e-commerce and marketing database through an API key, which has now been deactivated and is no longer accessible.

The database access, which has been used to send order confirmations and promotional emails, including mostly email addresses along with contact and order details such as first and last name, postal address, email address, and phone number.

Approximately 1 million email addresses were affected, and a subset of 9500 customers was exposed for first and last name, postal address, phone number, or ordered products.

“Your payment information and crypto funds are safe,” as the data breach has no link and impact on hardware wallets, crypto assets, or Ledger Live security, ensuring the company.

The company has since then informed all of its customers about the situation, and those whose detailed personal information is exposed have been sent dedicated emails.

Ledger has also notified the CNIL, the French Data Protection Authority, which ensures that data privacy law is applied to the collection, storage, and use of personal data.

Last week, they partnered with Orange Cyberdefense to assess the situation and are actively monitoring the evidence of databases being sold on the internet.

The company is now extending the scope of its security and organizational program to e-commerce, which initially focused on Products (HW and Vault). Further steps are taken to meet the requirements listed in ISO 27001.

Get Free Email Updates!

*Action* Enter Best Email to Get Trending Crypto News & Bitcoin Market Updates

I will never give away, trade or sell your email address. You can unsubscribe at any time.

AnTy
AnTy
AnTy has been involved in the crypto space full-time for over two years now. Before her blockchain beginnings, she worked with the NGO, Doctor Without Borders as a fundraiser and since then exploring, reading, and creating for different industry segments.

[Alert] Use the author's self-conducted information at your own risk, do you own research, never invest more than you are willing to lose.

[Disclosure] The published news and content on BitcoinExchangeGuide should never be used or taken as financial investment advice. Understand trading cryptocurrencies is a very high-risk activity which can result in significant losses. Editorial Policy \\ Investment Disclaimer

LEAVE A REPLY

Please enter your comment!
Please enter your name here

3,470FansLike
2,795FollowersFollow
4,233FollowersFollow

Live Bitcoin Price & Latest BTC Charts

Today's Latest Crypto News

Former Bank of China VP Backs Digital Yuan As An Accelerator for a ‘Dual Circulation'

A former Vice President of Bank of China has said that replacing the fiat RMB in circulation (M0) with a CBDC is the way...

ZEC Breaks Out of 3-Year Bear Market as Executive Director Bids Adieu to Zcash Foundation

The inaugural executive director of Zcash Foundation, the company behind the 24th largest cryptocurrency by market cap $845 million ZEC, has left the Foundation....

US Travel Firm Pays 414 Bitcoin worth $4.5 million to Hackers

US travel management company CWT paid 414 Bitcoin, worth $4.5 million, to hackers who stole sensitive corporate files and reportedly knocked 30,000 computers offline....

Florida Teenager, the ‘Mastermind' Behind Twitter ‘Bit-Con' Hack, Arrested

A Tampa, Florida teenager has been accused of being the ”mastermind” behind the biggest hack on Twitter and has been placed under arrest. 17-year-old Graham...

Bitcoin Celebrates USD’s Loss of Power as The Dollar Records its Worst Month in a Decade

Bitcoin is shining bright with a new 2020 high at about $11,740. Interestingly while the digital asset has been trending up, the US...

BitcoinExchangeGuide is a hyper-active daily crypto news portal with care in cultivating the cryptocurrency culture with community contributors who help rewrite the bold future of blockchain finance. Subscribe on Google News, see the mission, authors, editorial links policy, investment disclaimer, privacy policy. Got News? Contact us, we are human too. Note: nothing here is financial advice, do your own research thoroughly.

Start Using Crypto Today