BTC
$0.00
0.00%
Yet another high-profile crypto scandal involving a fake Ledger app on the App Store has once again shown that even ‘official’ app stores do not guarantee the security of your funds. After all, in just a few days, fraudsters managed to swindle millions of US dollars and euros, stealing the savings of people who had been putting money aside for decades.
According to official sources, over 50 users lost at least $9.5 million in various cryptocurrencies – Bitcoin, Ethereum, Solana and other tokens. Furthermore, among the victims of this scam is a well-known American musician who lost his pension savings amounting to approximately 5.9 BTC (over $400,000).
Cybersecurity experts conducted an investigation and discovered that in April 2026, a fake app appeared in the store, masquerading as the official crypto wallet management software – Ledger Live. It passed moderation and was available for download for several days. It is noteworthy that users trust official marketplaces.
It should be noted that the genuine app is important for the crypto industry as a centralised platform for managing cryptocurrency via users’ own devices. After all, the Ledger Live cryptocurrency wallet management software allows users to securely store, track and exchange digital assets by combining a software interface with Ledger hardware wallets.
Although the app is regularly updated, expanding the list of supported blockchains and DeFi services, and remains one of the leading tools for the secure management of crypto assets, aimed at users of Ledger hardware wallets, security rules have not been abolished.
Currently, crypto security experts claim that the fake app almost completely copied the original’s interface. After downloading and installing the app, users were prompted to enter their seed phrase. When crypto investors entered this phrase, the attackers gained full control of the funds and instantly withdrew them from the accounts. The funds were then quickly transferred through dozens of addresses, exchanges and crypto mixers to make them harder to trace.
After all, it is no secret that services (crypto mixers) which increase the anonymity of transactions by ‘mixing’ a user’s cryptocurrency with coins from other users and investors, ‘break the link’ between the sender and the recipient of the cryptocurrency. It is the crypto mixer that helps conceal the history of coins, making tracking via blockchain analytics more difficult, particularly in the context of stricter AML checks, which involve not only analysing the sources of funds and verifying transactions, but also identifying crypto wallet owners for risk assessment.
Anti-Money Laundering (AML checks) is a comprehensive set of measures aimed at preventing money laundering, the receipt of criminal proceeds and the financing of terrorism.
And although Apple has already removed the malicious app, the incident itself has cast doubt on the effectiveness of moderation and once again demonstrated that even an ‘official source’ can sometimes be a trap. This fraudulent scheme was made possible because scammers use convincing copies and generate fake reviews.
This particular case is a modern example of how trust can turn into a financial disaster, as the golden rule of cybersecurity remains unchanged: no legitimate service will ever ask you to enter your seed phrase, and revealing it effectively means losing all your funds.
