According to anonymous blockchain sleuth ZachXBT, hardware wallet giant Ledger is grappling with a data breach, this time related to its third-party payment processor Global-e.
A notification email shared by investigators on X and sent to customers said the breach involved unauthorized access to Ledger users’ personal details, such as names and contact information for Global-e cloud systems.
The email did not reveal the actual number of clients affected, nor did it specify when the breach occurred.
In 2020, Ledger experienced a data breach that exposed the information of 270,000 customers through e-commerce partner Shopify. In 2023, Ledger was hacked and lost nearly $500,000, affecting multiple decentralized financial applications.
Global-e said it discovered the unusual activity and quickly implemented controls when it launched an investigation and confirmed inappropriate access.
“We have engaged independent forensic experts to investigate this incident and we have determined that some personal data, including names and contact information, was inappropriately accessed,” the email said.
Ledger’s social media channels did not show any active events, urging people to remain vigilant.
CoinDesk has reached out to Ledger for comment.