Last week crypto wallet manufacturer Ledger disclosed that the customer information of 20.000 customers was leaked.
It’s not the first time that the company suffered a data leak. A data leak last summer resulted in a growing amount of phishing emails to people that bought a ledger.
This time the source of the leak wasn’t Ledger, but the company Shopify. Shopify claims that rogue employees stole customer records including Ledger’s.
Ledger owners threatened
Where we saw an increase of phishing mails after the first data leak, with this second one we see some cybercriminals use another approach.
On Reddit and other platforms Ledger owners write that they have received threats via phone and email.
In the example below the attackers mention the name and address of the victim and threaten to share that information with neighborhood burglars if they don’t send 0.3 BTC to the attackers wallet.
It must be really frightening when you receive messages like this from criminals. Although Ledger owners are informed of the data leak, receiving such a threat with your personal information must feel terrible.
Ledger has set up a bitcoin bounty for information leading to those responsible for the hack. It’s a good thing to do, but that won’t help prevent people from becoming victims of these extortion mails.
What to do?
But what can we actually do about this? We are at the mercy of companies that should protect our personal information. And according to the thousands of data leaks we have seen over the years, not every company is doing a great job.
I don’t own a Ledger, but I have been thinking about what I would do if I did want to order one. And I think the best thing to do is to ask for a delete request after you have purchased a Ledger. The European privacy law (GDPR) obliges companies to fulfill delete requests from their customers and I know many other countries have similar privacy laws.
When I’m thinking about it, it might not even be a bad idea to remove your online shopping accounts every now and then since they also store everything you have bought there as well as your address.
Be careful with your personal information!
Posted Using LeoFinance Beta