A fake Ledger app stole at least $9.5 million from users 🚨

A fake Ledger app stole at least $9.5 million from users 🚨

Market Analysis

April 15, 2026

The security story once again hit the most painful point of the crypto market – trust in official platforms. For some time, a fake app that disguised itself as Ledger Live was available in the Mac App Store. In a few days, it managed to extract crypto assets from more than 50 users, and the total amount of losses exceeded $9.5 million.

What happened

The scheme was simple, but very dangerous. The app pretended to be the official Ledger Live and during a supposed setup asked the user for their seed phrase. After that, the attackers gained full access to the wallets and quickly withdrew the funds. The fake app remained in the store for several days, after which it was removed.

Why this is so serious

This case hits not only the individual victims, but also the very idea that an official store automatically means security. The real Ledger Live for Mac does not ask you to enter a seed phrase in such a scenario. That is exactly why the incident quickly triggered a new wave of criticism toward Apple’s moderation process.

  • losses exceeded $9.5 million
  • more than 50 users were affected
  • the stolen funds were quickly moved through 150+ addresses and mixing services to make tracing more difficult

What is known about the stolen assets

Among the stolen assets were Bitcoin, Ethereum, Solana, Tron, and other assets. Several victims lost more than $1 million each. This shows that the targets were not only random small accounts, but also very large portfolios.

What this means for the market

The main conclusion here is unpleasant, but important: even an official marketplace does not cancel basic security rules. For a crypto user, the seed phrase still remains a point that cannot be entered just anywhere, even if the interface looks convincing. And for large platforms, this is another signal that the verification of financial and crypto apps has long ceased to be a technical formality and has become a direct risk factor.

Conclusion

The case of the fake Ledger Live shows how expensive a single mistake of trust can be. The app got into the official store, extracted seed phrases, and in a few days turned into a multi-million-dollar theft channel. For the market, this is not just another fraud story, but a harsh reminder that the official status of a platform still does not guarantee security.

Read also