I’m not into cryptocurrency, but I know that some of you are, so this one is important for you! I’d like to you be aware of and familiar with this phishing attempt. Check out this example of a Ledger Cryptocurrency Phishing email:
As fake emails go, I’d say this one is fairly sharp. No misspellings or horrible grammar, no ugly sender address, but it definitely did not come from the legitimate Ledger crypto-management company. It’s a phish message and its button & links go to a look-alike site in Sweden:
Anyone fooled into entering the recovery phrase on that site will be in dire trouble. I’m fairly certain that crooks will use that info to quickly siphon away all of the cryptocurrency behind it. And if your crypto-wallet is emptied in this manner, you can be pretty sure there is no chance of recovery.
Aside from this, I’ll mention that I also see where crypto thefts are being correlated to a 2022 LastPass data breach. If you’ve ever used LastPass, that means you should be extra-sure to change all passwords that may have been stored there, and use 2FA or passkeys wherever possible.
I’ll wrap up by reminding everyone: Don’t respond or react to any recent message that has you concerned about the security of your finances. Avoid clicking links in alarmist emails and don’t call strange phone numbers. Sidestep the message and go deliberately to your financial website through a trusted bookmark or official app. Or call a support number that you can trust, from a statement or official webpage. Only enter passwords, codes and phrases once you are 100% sure of the company/website you’re dealing with.