Ledger, a manufacturer of hardware wallets for cryptocurrencies, has revealed a vulnerability thatattackers gained access to personal data of about 1 million users.
</p>The vulnerability became known on July 14. Then a third-party researcher who took part in the bounty program reported about her. It was later revealed that on June 25, unidentified persons gained access to a database containing email and postal addresses, names, phone numbers and information about purchased Ledger products. The attackers obtained unauthorized access using an API key that has now been deactivated.
Ledger claims that billing informationinformation about bank cards and cryptocurrency accounts is not compromised and is safe. The developers noted that they fixed the vulnerability immediately after detection, and apologized to the users.
Representatives of Ledger urged wallet users to be careful about phishing attacks and not to disclose the secret phrase to restore access.
</p></p>Read this:
Data of 200 thousand cryptocurrency users put up for sale
Kraken's Fiat Services Provider Leaks User Data
Poloniex Bitcoin Exchange Denies Data Leakage Information
Hackers steal data from 2.2 million GateHub and EpicBot users
BitMEX exchange leaked user data
Facebook leaked personal data to 267 million users