Cryptocurrency Wallet Ledger Customer Data Leaked Again! Payment Provider Global-e Vulnerability Causes Trouble, Phishing Attacks May Resurface

According to the latest disclosure by well-known on-chain detective ZachXBT on January 5, 2026, the renowned hardware wallet manufacturer Ledger has experienced a new customer data breach incident.
(Background summary: Ledger updates NPM attack results: hackers made mistakes, almost no victims)
(Additional background: Ledger reveals that the Solana Seeker mobile phone may have an unpatchable vulnerability, and the Dimensity 7300 chip can leak private keys after being electrocuted)

According to the latest disclosure by well-known on-chain detective ZachXBT on January 5, 2026, the renowned hardware wallet manufacturer Ledger has experienced a new customer data breach incident. This incident quickly drew attention in the crypto community, with multiple users sharing ZachXBT’s alert post and attaching screenshots of notification emails received by affected customers.

Community alert: Ledger had another data breach via payment processor Global-e leaking the personal data of customers (name & other contact information).

Earlier today customers received the email below. pic.twitter.com/RKVbv6BTGO

— ZachXBT (@zachxbt) January 5, 2026

However, it is worth noting that this breach was not due to Ledger’s own systems being hacked directly, but resulted from a security vulnerability in its partner payment service provider Global-e. The leaked information mainly includes customer names, addresses, phone numbers, and other contact details, without involving seed phrases, passwords, or private keys of encrypted assets.

Ledger has not encountered similar issues for the first time

It is also worth mentioning that Ledger has faced similar problems before. In 2020, Ledger’s e-commerce database was compromised, leading to the leakage of over one million customer email addresses and some personal information. The serious consequence of this incident was a prolonged wave of phishing attacks, where scammers used the leaked data to send fake emails or messages, tricking users into revealing recovery phrases, resulting in asset losses for many users.

This incident, caused by a third-party service provider breach, once again highlights the security risks in the supply chain. Although funds are not directly stolen, personal data leaks significantly increase the risk of social engineering attacks targeting Ledger users, such as impersonation calls from fake customer service, phishing emails, or messages.

In response, security experts recommend users take the following protective measures:

• Be highly vigilant of any unexpected Ledger-related emails, messages, or calls, especially those requesting 24-word recovery phrases, downloading “update” software, or resetting devices.
• Use a dedicated email account for cryptocurrency-related matters, avoiding mixing with daily email accounts.
• Enable two-factor authentication and regularly check wallet authorization records.
• If you have received a breach notification email, it is advised to visit the official Ledger website to review the latest official statement and avoid clicking links within the email.

In summary, while the hardware wallet itself remains secure, personal privacy leaks can pose long-term risks. Users should stay vigilant.