The Twitter handle of Ledger Support has alarmed its followers about a fake Google Chrome extension that can potentially steal all of their funds.
?PHISHING ALERT?— Ledger Support (@Ledger_Support) March 5, 2020
A fake Chrome extension has been found, asking to enter your 24 word recover phrase
⚠️NEVER share your 24 words
⚠️NEVER enter your 24 words into any internet-connected device
⚠️Ledger will NEVER ask for your 24 words
Read more: https://t.co/QNoSwptn3U https://t.co/QZKMmT6TMf
Beware of phishing attacks
While hardware wallets are believed to be the best way to protect cryptocurrency holdings, their owners also have to exercise extreme caution. Otherwise, they might become victims of numerous phishing attacks.
Case in point: the malicious extension called Ledger Live that poses as the company's software for desktop and mobile platforms. According to ZDNet, its only purpose is to record 24-word seed phrases of uninitiated users in a Google Form.
In early January, Twitter user @hackedzec lost $16,000 worth of ZEC after downloading another fake Google Chrome extension for his Ledger wallet. This vividly shows how expensive such mistakes can be.