Users of Ledger and Trezor crypto hardware wallets are receiving fake letters demanding “Authentication Check” or “Transaction Check” by certain dates, threatening device restrictions. The letters contain holograms and QR codes that lead to scam websites. Scanning the codes allows threat actors to steal wallet recovery phrases and funds. Ledger and Trezor warn against sharing recovery phrases through any means.

The malicious websites mimic Ledger and Trezor setup pages, tricking users into entering their recovery phrases. Once entered, threat actors can access victims’ wallets and steal funds. Legitimate hardware wallet companies never request recovery phrases through any method.

Both Ledger and Trezor have been victims of data breaches and leaks in the past, exposing customer data. Trezor recently disclosed a security breach affecting nearly 66,000 customers. Scammers have previously mailed fake hardware wallets and sent letters prompting victims to scan QR codes, leading to phishing attacks and fund thefts. Ledger has alerted users to the ongoing physical mail phishing scam.

Read more at Cointelegraph: Fake Trezor, Ledger Letters Target Crypto Wallet Users