Buy BIM
Acheter du BIM
Acheter du BIM

Musician loses $424,000 in Bitcoin to fake Ledger app

Musician G. Love lost his retirement savings to a fake Ledger app listed on Apple's Mac App Store. The 24-word seed phrase was captured instantly.
Musician loses $424,000 in Bitcoin to fake Ledger app

Share the post on your social medias:

Musician loses retirement savings to fake Ledger app

American musician G. Love lost his retirement fund to a fake Ledger application listed on Apple’s Mac App Store. The Philadelphia-based artist, whose real name is Garrett Dutton, posted on X that all his Bitcoin was gone in an instant after switching to a new computer. On-chain investigator ZachXBT traced 5.92 BTC, worth approximately $424,000 at the time. Everything through nine separate transfers to deposit addresses at the KuCoin exchange. The stolen funds were laundered through the centralised exchange after the attack, which is a common technique for converting cryptocurrency to fiat currency.

G. Love held the Bitcoin for roughly a decade as his long-term retirement savings. The post received over 759,000 views on X and sparked over 360 replies from the cryptocurrency community. Ledger Chairman and CEO Pascal Gauthier responded to the incident by confirming the exploit was the result of a malicious file distributed via compromised websites and package managers.

G. Love - X (Twitter)
G. Love - X (Twitter)

How the fake Ledger app captured the seed phrase instantly

The fraudulent application was listed on Apple’s Mac App Store under a developer account unaffiliated with Ledger. It presented itself visually and functionally as the legitimate Ledger Live desktop client, the companion software users install to manage their hardware wallets. When G. Love downloaded the app during his device migration to a new Apple computer, it prompted him to enter his 24-word recovery phrase. This request is a major red flag. Why? Genuine Ledger Live never asks users to type their seed phrase into desktop software. The real Ledger device is the only trusted place to enter the recovery phrase, using its own physical screen and buttons. Once G. Love entered his 24-word seed phrase into the fake app, the attackers had full access to the wallet’s private keys and drained the funds immediately.

This attack vector is notable because it exploited trust in Apple’s Mac App Store, a distribution channel most consumers believe is thoroughly vetted. Ledger’s official stance is that users should never enter their seed phrase in any digital form, including on a computer or in an app. Attackers who impersonate Ledger and attempt to steal the 24-word Secret Recovery Phrase are running phishing scams. The incident also raises questions about how the fake app bypassed Apple’s review process, given that the Mac App Store is designed to screen applications before they reach users.

Sources:

Author

  • Earvin

    As an entrepreneur and crypto investor, I turn complex finance and blockchain topics into clear, engaging, and accessible content, even for beginners. My goal is to help everyone better understand the key challenges shaping today’s and tomorrow’s crypto landscape.

Join us

Dive into BIM Blog, your go-to guide for blockchain, cryptocurrencies, and a helpful glossary to deepen your understanding. Here, we break down the latest hot topics while providing clear insights to help you navigate and grow confidently within these exciting fields.

Ads

Our last articles

A selection for you :

[simple-author-box]

Laissez un commentaire

Partner link notice: This page features various assets, products, and services related to investing. Some of these links are partner links, meaning that if you make a purchase or sign up through them, we may receive a commission from our partner. This helps support the BIM ecosystem and our mission to provide you with relevant, high-quality content. Rest assured, this does not affect you in any way, and you may even benefit from certain advantages through our links.

High returns do not always guarantee profits. Any high-yield investment comes with an equally high level of risk. Make sure the level of risk you take aligns with your goals, your investment horizon, and your tolerance for loss.

Investment caution: Investing in cryptocurrencies involves risks. While we make every effort to highlight quality products and services, we cannot be held responsible for the consequences of your investment decisions. Crypto-assets are volatile by nature: do your own research, assess your risks, and only invest what you can afford to lose. The information provided here does not constitute financial advice.

Do not stake your capital if you are not prepared to face potential losses.

For full transparency, we invite you to consult our Privacy Policy and Terms of Service sections.