Ledger Data Breach Exposes Customer Information via Payment Processor

Ledger customers have been alerted to a new data breach affecting personal information through third-party payment processor, Global-e. The incident exposed customer names and contact details but did not compromise payment information or cryptocurrency assets.

Blockchain investigator Zachxbt first reported the breach on X. Customers received direct email notifications from Global-e regarding the unauthorized access to their cloud-based information system.

Community alert: Ledger had another data breach via payment processor Global-e leaking the personal data of customers (name & other contact information).

Earlier today customers received the email below. pic.twitter.com/RKVbv6BTGO

— ZachXBT (@zachxbt) January 5, 2026

Global-e confirmed the breach affected users who made purchases on Ledger.com using their services. The company stated it moved quickly to notify affected customers after confirming unauthorized access to consumer data.

This marks another security incident for Ledger, which previously suffered a major data breach in 2020. That earlier incident exposed customer information and led to widespread phishing campaigns targeting hardware wallet users.

Ledger Crypto Assets Remain Secure Despite Breach

Ledger moved quickly to reassure customers about the safety of their digital assets. The company confirmed the breach remains entirely separate from hardware device operations, software, and platforms.

Global-e has no access to recovery phrases, blockchain balances, or secrets related to digital assets. The self-custodial nature of Ledger products means third-party vendors cannot access the critical 24-word seed phrases.

Ledger emphasized that customer cryptocurrency holdings face no direct threat from this incident. The breach targeted only e-commerce transaction data processed through Global-e’s systems.

However, the company warned users to remain vigilant against potential phishing attempts. Criminals often exploit leaked contact information to craft convincing scam messages targeting crypto holders.

Ledger reminded customers that it will never request 24-word recovery phrases or confidential information. Users should verify all communications through official channels before taking action.

Security Best Practices for Affected Users

Ledger recommended several protective measures for customers potentially affected by the breach. Clear signing transactions, where possible, provides additional verification of transaction details before approval.

The company also suggested using Transaction Check when submitting blockchain transactions. This feature helps users verify transaction authenticity before confirming on their devices.

Users should carefully check all web links to ensure they lead to official Ledger pages. Phishing sites often mimic legitimate platforms to steal credentials and recovery phrases.

Meanwhile, the broader cryptocurrency industry continues facing escalating security threats. SlowMist’s 2025 Blockchain Security and AML Annual Report documented $2.935 billion in losses from 200 attacks.

🚨 SlowMist just released the 2025 Blockchain Security & AML Annual Report!

1/ In 2025, blockchain faced growing complexity: professionalized hacker groups (including DPRK-linked), DeFi exploits, RaaS/MaaS attacks, and evolving underground money laundering. Regulatory… pic.twitter.com/UkE8AHK0F0

— SlowMist (@SlowMist_Team) December 30, 2025

This figure represents a 45% increase compared to 2024 losses despite fewer total incidents. The data excludes individual user losses and unreported cases.

Ethereum-based projects suffered the highest ecosystem losses at $183.25 million. Solana recorded $17.45 million in damages, while Arbitrum experienced $17.10 million in losses.

Centralized exchanges faced particularly severe impacts this year. The Bybit hack alone accounted for $1.46 billion, pushing total CEX losses to $1.809 billion across 22 incidents.

DeFi protocols experienced 126 separate attacks totaling $649 million in losses. Smart contract exploits and account compromises emerged as the dominant attack vectors throughout 2025.

The Global-e breach adds to growing concerns about third-party vendor security in the cryptocurrency ecosystem. Companies handling crypto customer data face increasing scrutiny following repeated incidents.

Affected Ledger customers should monitor their email and communications for suspicious activity. Any requests for sensitive information should be treated with extreme caution and verified independently.