They're Even in the Post Now
Scams aren’t just digital anymore. We’ve seen a new wave of physical mail phishing scams targeting Ledger users – letters sent by post, dressed up with official logos, reference numbers, and even fake signatures. Their goal? To trick you into scanning a QR code or visiting a website where you’ll be asked to hand over your Secret Recovery Phrase.
Once a scammer has your phrase, your funds are gone. No reset. No undo.
How this scam works
We received the above letter claiming to come from Ledger’s Security & Compliance team in Paris. It looks polished, with:
- A bold warning that a new feature (“Transaction Check®”) is mandatory.
- A deadline of August 31, 2025 to avoid “limited access” to Ledger Live.
- A QR code asking you to “activate” the feature.
- References to multiple Ledger devices (Nano S, Nano X, Stax, Flex) to seem more authentic.
- A fake signature from the “Chief Technology Officer.”
The psychology is classic phishing – urgency (“do this before August 31 or lose access”), authority (Ledger branding and CTO signature), and convenience (QR code shortcut).
RED FLAG |
|---|
| Ledger will never ask you to scan a QR code or enter your Secret Recovery Phrase online. Ever. |
Other red flags in this specific example
If you received a letter like this, look out for:
- Mandatory feature claims: Ledger updates are delivered through Ledger Live, not through the post.
- Deadlines tied to access loss: Designed to scare you into quick action.
- QR codes or links to “activate” features: Always a phishing trap.
- Requests tied to your Secret Recovery Phrase: This is the golden rule – legitimate providers never ask for it.
What to do if you get one
- Do not scan the QR code. Bin the letter.
- Do not visit the website listed. Even if it looks convincing.
- Never share your Secret Recovery Phrase. Not with Ledger, not with anyone.
- Verify directly with Ledger. If in doubt, head to the official Ledger site or app, never via a link provided to you.
- Report it to Ledger Support.
Security Checks
Run through these quick checks whenever you’re hit with something unexpected:
- Device: Only update or verify via your Ledger device and official Ledger Live app.
- Wallet: Your wallet works without scanning QR codes from letters.
- Backups: Your seed phrase stays offline, ideally on a steel backup.
- Recovery: No third party should ever walk you through recovery.
Stay ahead of scams with layered protection
Phishing scams are only getting more sophisticated – moving from inboxes to your letterbox. The best defence is education and layered security habits.
With our Crypto Safe membership, you’ll get:
- Practical scam-spotting guides like this one.
- Step-by-step security checks to keep your wallets hardened.
- Recovery planning so you’re never caught off-guard.
- Ongoing updates on the latest scam tactics targeting crypto holders.
Remember: Your Secret Recovery Phrase is the one key to your funds. If someone else has it, they own your assets. Keep it offline. Be crypto safe.
Stay safe. Stay smart. Be Crypto Safe.
Education is your best defence. Unlock member-only guides, checklists, and tools designed to protect your crypto, stay safe and be compliant.
