1 year ago
The $588,000 was stolen crossed 38 transactions, with the largest transportation totaling $81,200.
Almost $600,000 successful Bitcoin (BTC) has been stolen from users who person downloaded a fake Ledger Live exertion connected Microsoft’s app store, according to cryptocurrency sleuth ZachXBT.
The on-chain expert spotted the scam, “Ledger Live Web3” connected Nov. 5, which is tricking users into reasoning that they’re downloading “Ledger Live” — a idiosyncratic interface for Ledger hardware wallets to store cryptocurrency offline.
Approximately 16.8 BTC worthy $588,000 has been received by the scammer crossed 38 transactions utilizing wallet address, “bc1q….y64q,” according to Blockchain.com. About $115,200 has near the scammer’s wallet crossed 2 transactions, leaving it with $473,800 oregon 13.5 BTC.
Community Alert: There is presently a fake @Ledger Live app connected the authoritative @Microsoft App Store which was resulted successful 16.8+ BTC ($588K) stolen
Scammer address
bc1qg05gw43elzqxqnll8vs8x47ukkhudwyncxy64q pic.twitter.com/rOZ0ZWRWbn
The archetypal transaction sent to the scammer’s wallet code took spot connected Oct. 24, worthy $5,210. Prior to that, the wallet hadn’t been used.
Most of these transactions person taken spot since Nov. 2, with the largest transportation totaling $81,200 connected Nov. 4.
A hunt by Cointelegraph recovered the fake “Ledger Live Web3” exertion appeared successful Microsoft’s app store arsenic aboriginal arsenic Oct. 19.
The fake “Ledger Live Web3” app connected Microsoft Apps. Source: MicrosoftZachXBT said they person received 2 messages from victims connected Nov. 4 and adjacent argued that Microsoft “should beryllium held liable” for allowing the fake Ledger Live app to look successful its app store.
Sadly received 2 messages astir this from victims today. Seems different idiosyncratic mislaid funds successful conscionable past fewer min. pic.twitter.com/yYPbizltN5
— ZachXBT (@zachxbt) November 5, 2023Related: Ledger hardware wallet rolls retired cloud-based backstage cardinal betterment instrumentality
It isn’t the archetypal clip a fake Ledger Live app has made its mode into Microsoft’s app store either.
Ledger’s enactment relationship connected X (formerly Twitter) informed its users astir a fake Ledger Live app connected 2 abstracted occasions successful December and March.
— Ledger Support (@Ledger_Support) December 26, 2022Ledger hasn’t commented connected the scam but has antecedently iterated to users that the "only harmless place" to download Ledger Live is from its website, ledger.com.
Cointelegraph reached retired to Microsoft for remark but did not person an contiguous response.
Magazine: ‘Account abstraction’ supercharges Ethereum wallets: Dummies guide
English (US) 