A fraudulent macOS application, masquerading as the legitimate Ledger Live crypto wallet, has exploited vulnerabilities in Apple’s app review system, significantly affecting users and leading to substantial financial losses. Reports indicate that between April 7 and April 13, more than 50 people fell victim to this deceit, collectively losing around $9.5 million in cryptocurrency.
The counterfeit app not only mimicked the features of the genuine Ledger Live app but also requested sensitive information including users’ seed phrases—an alarming request that legitimate cryptocurrency applications, such as the official Ledger app, do not make. It is crucial to note that Ledger’s authentic Mac application is available solely through the Ledger website and is not listed on the Mac App Store, further underscoring the degree of deception involved in this scam.
The stolen funds were funneled through the KuCoin crypto exchange, with hackers utilizing a cryptocurrency mixing service known as AudiA6, renowned for its steep fees, to obscure the origins of the laundered assets. Among the victims, three reported losses exceeding $1 million each, marking this incident as exceptionally severe in the realm of counterfeit app scams.
ZachXBT, known for investigating cryptocurrency-related scams, shared insights on Telegram regarding the incident. He suggested that Apple could potentially face a class-action lawsuit due to the significant financial impact on users who trusted the platform to safeguard their transactions.
In response to the outcry, Apple has since removed the fraudulent Ledger Live app from the Mac App Store; however, it had been available for around two weeks prior to its removal. The method by which the app successfully navigated Apple’s app review process remains unclear, and Apple has not provided any comment or explanation regarding the incident.
This incident serves as a stark reminder of the risks associated with downloading applications from unofficial sources and the necessity for both users and platforms to remain vigilant against potential threats in the digital landscape.
