Hardware crypto wallet maker Ledger has issued an urgent scam warning as impersonation and phishing attempts targeting its users continue to rise across the crypto ecosystem. In a reply posted on X, Ledger acknowledged that scammers posing as Ledger and its representatives are becoming increasingly common.
The wallet provider stated that it is actively reporting and blocking fraudulent accounts on social media, but conceded that this alone is insufficient, as it cannot control what accounts — whether real users or bots — choose to say in their messages, emails, websites, calls, bios, or usernames on X. Ledger described the situation as an ongoing challenge across platforms.
The warning came in response to a crypto user known as "James Rule XRP," who flagged a fake email claiming to notify recipients of a post-quantum security patch allegedly sent by Ledger.
Warnings Issued
Ledger cautioned that as digital ownership grows, so does the sophistication and frequency of fraud attempts. The company emphasized that staying informed and vigilant about scams and phishing attempts is both important and necessary for protecting users.
In a separate post, Ledger noted that staying informed about common online scams remains a crucial aspect of digital ownership, particularly during periods when phishing attempts are becoming more active across the ecosystem.
Ledger warned that if a message feels unexpected or suspicious, users should pause before taking any action. Crypto users are advised never to click on links or share personal information in response to unsolicited communications. Instead, they should verify any correspondence through official Ledger channels to avoid irreversible mistakes.
As a key reminder, Ledger stated clearly that it will never call, direct message, or ask for a user's 24-word recovery phrase. If anyone claiming to be from Ledger does so, it should be treated as a scam. Ledger also reiterated that it will never ask for a Secret Recovery Phrase (SRP), will never initiate a phone call to users, and will never send a direct message first.
Ledger urged crypto users to stay cautious, keep their assets safe, and always clear-sign transactions where possible.
As phishing scams continue to spread across the crypto space, industry leaders are increasingly stepping up to warn the broader community. Among them, Ripple CTO Emeritus and one of the original architects of the XRP Ledger, David Schwartz, has also issued warnings about phishing attempts in which scammers impersonate Robinhood to send fraudulent emails to users.
Why it matters
Scammers are actively impersonating Ledger across multiple channels — including emails, direct messages, phone calls, and social media bios — making it harder for users to distinguish legitimate communications from fraudulent ones.
Phishing attempts are growing in sophistication alongside the expansion of digital ownership, meaning even experienced crypto users can be targeted by convincing fake correspondence.
In most cases, hardware wallet compromises are difficult or impossible to reverse — stolen seed phrases generally cannot be reset — so recognising scam attempts before acting on them is critical to protecting assets.
