I recently received a phishing email designed to persuade unsuspecting Ledger users to disclose their seed phrase (thus giving scammers access to their crypto assets).
See a screenshot of the email below:
If you are the owner of a Ledger hardware wallet (or any other hardware wallet), never ever share your seed phrase online.
Always be cautious any time you receive an email or text message asking you for sensitive information. Many crypto users are aware of this, but scammers continue to do it because people continue to fall for it. So let's get the word out as much as possible.
For an accurate assessment and review of this phishing scam, check out the below video from The CryptoDad
TAKE ACTION
If you receive (or have received) a phishing email like this, the following steps will take less than a minute of your time to complete, and you will play an effective role in combating phishing scams like this.
Step 1: Forward the email you received to the domain registrar of the phishing website. For this, you will want to forward the email to trustandsafety@support.aws.com
Step 2: Copy and paste the following message in your email:
Step 3: Send the emailPlease be advised that you are currently hosting a phishing website designed to trick users into sharing the seed phrase of their Ledger wallets.
See the phishing email below and note that the link redirects users to a phishing website that you are hosting.
Such activity is illegal and warrants the cancellation of the hosting service. Furthermore, please report the identity of the owner to the proper authorities.
Thank you
That's all there is to it.
Upon receiving such notices, the hosting provider will likely disable the hosting of the website and may take the initiative to report the culprit's identity to the authorities; which may lead to future arrests and fewer attempts at these types of scams.
