Ledger has confirmed the security of its Discord server following a breach on May 11, when an attacker compromised a moderator's account. This allowed the hacker to post phishing links aimed at tricking users into revealing their seed phrases on a fraudulent website. The compromised account was quickly removed, and steps to secure the server were implemented, including the deletion of the malicious bot, reporting the scam website, and reviewing permissions. Some Discord members reported being banned or muted by the attacker as they attempted to alert others. Ledger emphasized that this incident was isolated and reaffirmed their commitment to strengthening security on the platform. Users had been misled into believing there was a vulnerability in Ledger's systems and were urged to verify their accounts through the posted links. It remains unclear if any users were affected by this breach, but Ledger has been the target of similar scams before, including phishing letters sent to customers. Following a significant data leak in July 2020, that exposed personal information of over 270,000 customers, the company has faced ongoing challenges with security measures against scams and phishing attempts.

Source 🔗