#sui Hackers Forge Fake Ledger Live App to Steal Cryptocurrency, Users Must Be Cautious of Cold Wallet Security
Recently, cybersecurity company Moonlock warned that hackers are stealing cryptocurrency through a forged Ledger Live application. Ledger Live is the official software for managing Ledger cold wallets, which users use to view and transfer cryptocurrency assets. Attackers distribute counterfeit versions to first steal users' passwords, transaction information, etc., and then upgrade their methods, even being able to steal the wallet's recovery phrase, completely controlling users' assets.
Attack Methods
Initially, the forged application could only steal some basic information, such as passwords and wallet balances, and could not directly steal funds. However, within less than a year, hackers continuously improved their methods, successfully stealing recovery phrases and thus completely controlling the victims' wallets, stealing cryptocurrency from them.
Preventive Measures
Download Official Apps: Always obtain Ledger Live from the official Ledger website, avoiding third-party downloads.
Check Application Source: Ensure that the application comes from a trusted developer.
Do Not Enter Recovery Phrases: Official applications never ask for recovery phrases, be wary of phishing websites.
Update Hardware Wallets: Keep the Ledger hardware wallet and software up to date.
Enable Two-Factor Authentication: Enable two-factor authentication for Ledger Live and related services to enhance security.
As cryptocurrency attack methods continue to evolve, users need to remain vigilant when using cold wallets. Only through careful security measures can one effectively protect their digital assets
