Loading Ratings...
A fresh data breach has affected Ledger customers, but not the wallets themselves with Ledger's partner Global-e being affected.
Author: Sahil Thakur
Published On: Tue, 06 Jan 2026 01:35:41 GMT
6th January 2025 â A fresh data breach has affected Ledger customers, but not the wallets themselves.
Ledger confirmed that its third-party e-commerce partner, Global-e, experienced unauthorized access to order data. This breach involved customer names and contact details, but no crypto assets or sensitive wallet information were compromised.
Global-e, the e-commerce platform Ledger uses to process international orders, suffered a security incident. On January 5, Ledger sent out alerts confirming that some order-related customer data was exposed. This included names, emails, and contact info.
However, no payment information, seed phrases, or crypto balances were accessed. Ledger emphasized that its self-custodial hardware products ensure user assets stay secure, even if a vendorâs system is breached.
âGlobal-e does not have access to your 24 words, blockchain balance, or any secrets related to digital assets,â Ledger stated.
Ledger has hired independent forensic experts to examine the breach. This move follows their long-standing focus on transparency and user protection. In its statement to users, Ledger explained that the investigation aims to fully assess the scope of the breach and prevent further issues.
This isnât Ledgerâs first encounter with third-party issues. In December 2023, malicious code was injected into Ledger Connect Kit after a former employee fell victim to phishing. At the time, Ledger advised users to stop using dapps until the vulnerability was resolved.
The companyâs most high-profile incident occurred in 2020, when attackers leaked the personal data of over 270,000 customers. That breach exposed names, emails, phone numbers, and even home addresses. It later led to phishing attempts, a bitcoin bounty hunt, and a class-action lawsuit against both Ledger and Shopify.
Global-e is a Nasdaq-listed global retail and payment platform based in Israel. It powers e-commerce services for brands like Victoriaâs Secret, Adidas, and Marc Jacobs. Ledger uses it for international transactions on its main online store.
The fact that Global-e serves hundreds of companies raises additional questions about the broader impact of the breach across other merchants.
Ledgerâs hardware and software remain untouched, but the incident still raises trust concerns. As hardware wallets continue to position themselves as the gold standard in crypto security, how they manage third-party integrations will come under more scrutiny.
While no crypto was stolen, the repeated involvement of external vendors in data leaks highlights an ongoing vulnerability even for self-custodial tools.
Ledger says it remains committed to transparency and user protection, but as past incidents show, user data, not just crypto, is often the real target.
Real voices. Real reactions.
I received Ledger's email stating my name, postal address, email, and phone number got leaked. I would be extremely worried right now. Wrench physical attacks are getting more common and I believe if economy & world gets more unstable, these attacks will become serious issue https://t.co/4oDC6yIiUJ
Ledger is cooked after this it might be wise to pay someone to make yourself disappear from the internet (not kidding) this is a bigger issue than people think with LLMs its now trivial for ANYONE to analyze huge data sets ledger breach in 2020 dataset crossreferenced with https://t.co/vLJtfc6gtH https://t.co/E9PFsV55eN
Community alert: Ledger had another data breach via payment processor Global-e leaking the personal data of customers (name & other contact information). Earlier today customers received the email below. https://t.co/RKVbv6BTGO
Our Crypto Talk is committed to unbiased, transparent, and true reporting to the best of our knowledge. This news article aims to provide accurate information in a timely manner. However, we advise the readers to verify facts independently and consult a professional before making any decisions based on the content since our sources could be wrong too. Check our Terms and conditions for more info.
Chen Zhi Extradited to China Over $14B Crypto Scam
TwinkBukowski Rug Pull Admission Triggers Backlash
Ledger Hit by Data Breach, Wallets Remain Safe
Unleash Protocol Loses $3.9 Million in Governance Exploit
Chen Zhi Extradited to China Over $14B Crypto Scam
TwinkBukowski Rug Pull Admission Triggers Backlash
Ledger Hit by Data Breach, Wallets Remain Safe
Unleash Protocol Loses $3.9 Million in Governance Exploit
