The Ledger crypto wallet is calling out users to warn about the fake Ledger Google Chrome extension that’s actually a phishing scam to trick users into revealing their secret information.
The Tweet that shares the information that the fake Ledger Google Chrome extension is deploying phishing method to acquire the 24 digit phrase required to access your cryptocurrency from remote locations.
A fake Chrome extension has been found, asking to enter your 24 word recover phrase
⚠️NEVER share your 24 words
⚠️NEVER enter your 24 words into any internet-connected device
⚠️Ledger will NEVER ask for your 24 words
— Ledger Support (@Ledger_Support) March 5, 2020
What is fake Ledger Google Chrome extension
The fake Ledge, Google Chome extension, dubbed the Ledger Live extension reports itself to be a live version of the Ledger crypto wallet. The official Tweet carries instructions on how to secure your 24 character pin code and the recovery phrase that serves as a backup password.
The tweet further warns users about the hazards of sharing the passphrase with a Tweet from ZDNet reporter Catalin Cimpanu who appears to have reported the issue in a ZDNet report.
Malicious Chrome extension caught stealing Ledger wallet recovery seeds
> Stolen Ledger seed phrases will allow attacker to recover Ledger wallet content on another device — gain access to the victim's cryptocurrency private keyshttps://t.co/0GqLzNhpSn pic.twitter.com/zCa8xVmUrx
— Catalin Cimpanu (@campuscodi) March 5, 2020
Although the extension is disguised as an official Ledger wallet application extension, it is uploaded by user Productivity. The extension appears to have been removed from the Google Chrome Webstore; however, it may still be available in some regions, depending on the size of the target cycle.
2019 has witnessed an overall decline in various different attacks; however, email phishing, code phishing, remote control access, and ransomware continue to be the dark reality of the cryptocurrency sphere.
Featured Image by Geralt