Hardware wallet giant Ledger is grappling with a data exposure incident, this time linked to its third-party payment processor Global-e, according to pseudonymous blockchain sleuth ZachXBT.
A notification email sent to customers and shared by the investigator on X said the breach involved unauthorized access to Ledger users’ personal details like names and contact information from Global-e’s cloud system.
The email did not disclose the actual number of clients affected or specify when the exploit occurred.
In 2020, Ledger experienced a data breach that exposed information of 270,000 customers through e-commerce partner Shopify. In 2023, Ledger was hacked for nearly $500,000, affecting several decentralized finance applications.
Global-e said it detected unusual activity and swiftly implemented controls while launching an investigation, which verified the improper access.
“We retained independent forensic experts to conduct an investigation into the incident and we were able to determine that some personal data including name and contact information were improperly accessed,” the email said.
Ledger’s social media channels show no active incidents, urging vigilance yet.
CoinDesk has contacted Ledger for comment.
