Ledger Users Hit by Phishing After Global-e Breach; Ledger's January 5 Disclosure

On January 5, Ledger informed customers that its e-commerce partner Global-e suffered a breach exposing names, emails, phone numbers, and order details. Soon after, phishing emails falsely promoting a Ledger–Trezor merger urged users to enter 24-word recovery phrases on a spoofed site. Global-e confirmed the incident was limited to contact and order data and is investigating with cybersecurity experts.