Manufacturer of Ledger hardware wallets and 1 million data leak
Major hardware wallet company, Ledger, revealed that the platform had a data leak that resulted in a customer data breach.
The company announced this on Wednesday (July 29, 2020) via a blog. According to Ledger, the hacker gained access to part of the company's e-commerce and marketing database through an inactive and inaccessible application programming key (API).
Explaining the details of the violation, Ledger said the attack was first noticed in early July. While the company appeared to have addressed the issue, it discovered a prior breach occurred on June 25.
The investigation found that approximately one million email addresses belonging to customers were compromised. In addition, access to the Ledger e-commerce and marketing database allowed the hacker to reveal various user data, such as names, phone numbers, products ordered and addresses.
Ledger assured customers via a blog that confidential information such as passwords and payment information had not been compromised. In addition, user funds are safe.
"This data breach is unrelated to and has no bearing on our hardware wallets or the security of Ledger Live and your cryptographic assets, which are secure and never compromised. Only you are in control and can access this information."