A recent data breach involving Ledger’s e-commerce partner Global-e has raised concerns among cryptocurrency users. Ledger has now confirmed that the incident did not compromise crypto wallets, private keys, or seed phrases, and that its own systems remain secure.
What happened with Global-e
Ledger confirmed that Global-e, a cross-border payment and e-commerce platform it integrated in October 2023, experienced unauthorized access to order-related data within its own systems. The breach affected some customers who made purchases on Ledger.com using Global-e as the merchant of record.
According to Ledger, the incident was fully contained within Global-e’s infrastructure. There was no breach of Ledger’s internal platform, hardware wallets, software, or security architecture. The company emphasized that the issue was related strictly to e-commerce order data and not to crypto asset management.
What customer data was exposed
Reports shared by users on X indicate that some personal information was exposed during the incident. Ledger later confirmed that the accessed data included names and contact details of certain customers.
In a statement sent to affected users and reviewed, Ledger said independent forensic experts were hired to investigate the breach. The investigation concluded that no payment-related data was accessed. Credit card numbers, bank account details, account passwords, and login credentials were not affected.
Ledger also clarified that Global-e does not store highly sensitive personal information such as government ID numbers, dates of birth, or similar data.
No access to wallets, private keys, or seed phrases
Ledger reiterated that its hardware wallets are self-custodial by design. This means that only users control their private keys and 24-word recovery seed phrases. Neither Ledger nor any third-party service involved in payments or logistics can access these credentials.
Global-e does not have access to wallet seed phrases, private keys, blockchain balances, or any data that could be used to control or drain crypto assets. Ledger stressed that users’ funds remain fully secure and unaffected by the breach.
Phishing risks and user safety
While crypto wallets were not compromised, Ledger warned users to stay alert for potential phishing attempts. Data breaches involving contact information often lead to scam campaigns designed to impersonate official brands and trick users into revealing sensitive details.
Ledger noted that the unauthorized access at Global-e impacted multiple brands, not just Ledger, as the attacker gained entry to a cloud-based system containing shopper order data from several companies.
Recent context and broader industry impact
The incident comes only months after Ledger warned customers about a separate phishing campaign involving physical mail, highlighting how frequently attackers target crypto users through social engineering rather than technical exploits.
The Global-e breach is part of a wider trend of data exposure across digital platforms, including crypto services. In recent years, similar incidents have led to phishing attacks aimed at users of major companies such as Coinbase, Binance, and hardware wallet competitor Trezor.
Ledger stated that it continues to work closely with Global-e to ensure all affected users are properly informed and equipped with guidance on how to protect themselves. For now, the company maintains that the security of its hardware wallets and users’ crypto assets remains intact.
