🎁 Ace quick missions & earn crypto rewards while gaining real-world Web3 skills. JOIN NOW! 🔥
Ledger
Crypto News Exploits
Fake Ledger Live App on macOS Steals Crypto—Over 2,800 Sites Compromised

Fake Ledger Live App on macOS Steals Crypto—Over 2,800 Sites Compromised

Aaron S. Editor-In-Chief
Written by Aaron S.,
Editor-In-Chief

✓ Fact Checked

Last Updated: May 23, 2025

✓ Fact Checked

Key Takeaways

  • Hackers are targeting macOS users with fake Ledger Live apps that steal seed phrases and drain crypto wallets;
  • The malware spreads via Atomic macOS Stealer, found on around 2,800 compromised sites, and swaps the real app for a fake;
  • Once the fake app is installed, it tricks users into entering seed phrases, giving attackers full access to their funds.

Ace quick missions & earn crypto rewards while gaining real-world Web3 skills. Participate Now ! 🔥

Fake Ledger Live App on macOS Steals Crypto—Over 2,800 Sites Compromised

macOS users who use Ledger Live are being targeted by a scam that tricks them into handing over their crypto.

According to a report from Moonlock on May 22, attackers are spreading fake versions of the Ledger Live app that can steal wallet recovery phrases and empty users’ accounts.

The fake app replaces the official Ledger Live after a user’s computer is infected. Once installed, it shows a warning message that looks legitimate and asks the user to enter their seed phrase. If entered, that information is sent straight to the attacker, which allows them to take full control of the wallet.

What is Odysee & LBRY? Is Decentralized YouTube Possible? (ANIMATED)

Did you know?

Want to get smarter & wealthier with crypto?

Subscribe - We publish new crypto explainer videos every week!

What is Odysee & LBRY? Is Decentralized YouTube Possible? (ANIMATED)

What is Odysee & LBRY? Is Decentralized YouTube Possible? (ANIMATED) What is Odysee & LBRY? Is Decentralized YouTube Possible? (ANIMATED)

Moonlock stated that the malware is often spread using a tool called Atomic macOS Stealer. The cybersecurity firm has found the tool on around 2,800 websites that have been compromised. When it infects a system, it collects personal info, passwords, wallet details, and then swaps out the real app for a fake one.

Initially, the fake app could only collect basic wallet data, like notes or password hints, but could not access the funds directly. However, Moonlock explained that attackers have figured out how to collect seed phrases, which allows them to transfer all the money out of the wallet.

Moonlock warns that this is not just about theft—it is about hackers finding new ways to target tools that many crypto users trust.

On May 11, a Ledger Discord moderator account was hacked and posted a phishing link requesting users’ wallet recovery phrases. How did Ledger respond? Read the full story.

Aaron S. Editor-In-Chief
Aaron S. Editor-In-Chief
Having completed a Master’s degree in Economics, Politics, and Cultures of the East Asia region, Aaron has written scientific papers analyzing the differences between Western and Collective forms of capitalism in the post-World War II era.
With close to a decade of experience in the FinTech industry, Aaron understands all of the biggest issues and struggles that crypto enthusiasts face. He’s a passionate analyst who is concerned with data-driven and fact-based content, as well as that which speaks to both Web3 natives and industry newcomers.
Aaron is the go-to person for everything and anything related to digital currencies. With a huge passion for blockchain & Web3 education, Aaron strives to transform the space as we know it, and make it more approachable to complete beginners.
Aaron has been quoted by multiple established outlets, and is a published author himself. Even during his free time, he enjoys researching the market trends, and looking for the next supernova.
See Our Experts
Loading...

The Most Liked Crypto News Findings

Looking for more latest crypto news on related topic? We have gathered similar news articles for you to spare your time. Take a look!

Hacker Behind Coinbase Data Breach Swaps $42 Million, Mocks ZachXBT

Exploits

Hacker Behind Coinbase Data Breach Swaps $42 Million, Mocks ZachXBT
Crypto Heist in London: Fake Uber Driver Steals $123,000 From US Tourist

Exploits

Crypto Heist in London: Fake Uber Driver Steals $123,000 From US Tourist
Coinbase Hit by $20 Million Extortion Plot After Insider Data Leak

Exploits

Coinbase Hit by $20 Million Extortion Plot After Insider Data Leak

Latest Crypto News & Videos

"National Vending" Biz Busted: Bitcoin Launderer Gets 6 Years

Regulation

"National Vending" Biz Busted: Bitcoin Launderer Gets 6 Years
Operation RapTor Arrests 270 Suspects in $200 Million Global Darknet Drug Sting

Regulation

Operation RapTor Arrests 270 Suspects in $200 Million Global Darknet Drug Sting
Senate Democrats Target Presidential Stablecoin Profits in GENIUS Act

Regulation

Senate Democrats Target Presidential Stablecoin Profits in GENIUS Act
The Most Rewarding Play-to-Earn Project? BitDegree Explained (ANIMATED) The Most Rewarding Play-to-Earn Project? BitDegree Explained (ANIMATED)
VIDEO
The Most Rewarding Play-to-Earn Project? BitDegree Explained (ANIMATED)
What Are Crypto Quests? EASIEST Ways to Earn Rewards Explained What Are Crypto Quests? EASIEST Ways to Earn Rewards Explained
VIDEO
What Are Crypto Quests? EASIEST Ways to Earn Rewards Explained
What Is Chia? | Crypto Finally Explained What Is Chia? | Crypto Finally Explained
VIDEO
What Is Chia? | Crypto Finally Explained

Trending Crypto News

Can a decentralized chain just... freeze your funds?

Can a decentralized chain just... freeze your funds?

US First Lady Goes High-Tech: Melania Trump's Memoir Read by AI Clone

US First Lady Goes High-Tech: Melania Trump's Memoir Read by AI Clone

Cetus Hit by Exploit—$220 Million Gone, $6 Million Bounty on the Table

Cetus Hit by Exploit—$220 Million Gone, $6 Million Bounty on the Table

Claude Opus 4 and Sonnet 4 Launch with Dual-Speed AI Modes

Claude Opus 4 and Sonnet 4 Launch with Dual-Speed AI Modes

Ledger
Binance
KuCoin
Ledger
binance
×
Verified

$600 WELCOME BONUS

Earn Huge Exclusive Binance Learners Rewards
5.0 Rating
Get deal
See all Provider Coupons
×
BitDegree.org

BitDegree.org

Fact-checking Standards

To ensure the highest level of accuracy & most up-to-date information, BitDegree.org is regularly audited & fact-checked by following strict editorial guidelines & review methodology.
Carefully selected industry experts contribute their real-life experience & expertise to BitDegree's content. Our extensive Web3 Expert Network is compiled of professionals from leading companies, research organizations and academia.

All the content on BitDegree.org meets these criteria:

  • Only authoritative sources like academic associations or journals are used for research references while creating the content.
  • The real context behind every covered topic must always be revealed to the reader.
  • If there's a disagreement of interest behind a referenced study, the reader must always be informed.
Feel free to contact us if you believe that content is outdated, incomplete, or questionable.
×
Subscribe

Subscribe

On Youtube

Understand crypto with ease

New explainer videos every week!