Fake Ledger Live App on Apple Store Drains $9.5M from 50+ Victims

A sophisticated phishing operation using a fake Ledger Live app on Apple's App Store has drained $9.5 million from cryptocurrency holders. Blockchain investigator ZachXBT identified over 50 victims who downloaded what appeared to be the legitimate Ledger hardware wallet management application.

The malicious app mimicked Ledger's official interface to steal private keys and seed phrases from unsuspecting users. Once victims entered their wallet credentials, attackers immediately transferred funds to external addresses. The operation primarily targeted Ethereum-based assets, with funds flowing through multiple wallet addresses before hitting mixing services.

ZachXBT's investigation traced the stolen cryptocurrency to mixers connected to KuCoin exchange. The funds followed typical money laundering patterns, moving through multiple intermediary addresses before entering privacy-focused services. The researcher documented the complete transaction chain, providing evidence for potential law enforcement action.

The incident raises critical questions about Apple's app review process and potential liability for hosting malicious applications. Unlike sideloaded apps, Apple's walled garden approach suggests enhanced security screening that apparently failed to detect this sophisticated fake. The company has not yet responded to requests for comment about their vetting procedures.

Crypto users should verify app developers through official channels and never enter seed phrases into mobile applications. The Ledger ecosystem continues operating normally, but this breach highlights the persistent threat of supply chain attacks targeting cryptocurrency holders through trusted distribution platforms.