Crypto hackers target Trezor and Ledger users in theft campaign

Crypto hackers are sending physical letters impersonating Trezor and Ledger to steal cryptocurrency wallet recovery phrases.

The phishing campaign claims recipients must complete mandatory “Authentication Check” or “Transaction Check” procedures.

The hackers are also creating urgency through deadlines of February 15, 2026 for Trezor. Letters printed on official-looking letterhead direct users to scan QR codes leading to malicious websites.

The phishing sites request 24-, 20-, or 12-word recovery phrases under the pretense of verifying device ownership.

Once entered, recovery phrases transmit to threat actors through backend API endpoints, granting attackers full control over victims’ wallets and funds.

Both hardware wallet companies suffered data breaches in recent years that exposed customer contact information.

Crypto hackers target Trezor and Ledger users in theft campaign

Governor approves tax breaks for Google data center in Henderson

JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident

Crypto hackers target Trezor and Ledger users in theft campaign

Google Cloud unveils new tools to democratise AI

Governor approves tax breaks for Google data center in Henderson

JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025

OpenAI Revokes macOS App Certificate After Malicious Axios Supply Chain Incident