Phishing Report Domains - Impersonation of Ledger Wallet
https://app.ledger-lives-desktop.io/
Original sites https://ledger.com/
Bing Search
To whom it may concern,
I am writing to formally report a highly sophisticated phishing operation targeting users of the ;Ledger Wallet; cryptocurrency software. The fraudulent site is currently indexed and easily discoverable via Bing Search, posing a severe risk to public financial security.
Malicious Domains:
-
https://app.ledger-lives-desktop.io/ (Main phishing landing page)
-
(Secondary alias)
Name Servers:
ns1.cloud-zero.net, ns2.cloud-zero.net
Nature of the Fraud:
These websites impersonate the official Ledger Wallet interface. Their sole purpose is to deceive users into entering their 12-word recovery phrases (seed phrases). Once entered, the private keys are exfiltrated, and the users; digital assets are stolen immediately.
Evasion Techniques (Cloaking):
You may notice that some automated scanners show ;No Detections.; This is due to an active cloaking mechanism implemented by the attackers. The site serves benign content or 404 errors to automated bots and non-targeted regions, while displaying the full phishing interface specifically to English-speaking users arriving from search engin
Phishing Report Domains - Impersonation of Ledger Wallet
https://app.ledger-lives-desktop.io/
Original sites https://ledger.com/
Bing Search
To whom it may concern,
I am writing to formally report a highly sophisticated phishing operation targeting users of the ;Ledger Wallet; cryptocurrency software. The fraudulent site is currently indexed and easily discoverable via Bing Search, posing a severe risk to public financial security.
Malicious Domains:
https://app.ledger-lives-desktop.io/ (Main phishing landing page)
(Secondary alias)
Name Servers:
ns1.cloud-zero.net, ns2.cloud-zero.net
Nature of the Fraud:
These websites impersonate the official Ledger Wallet interface. Their sole purpose is to deceive users into entering their 12-word recovery phrases (seed phrases). Once entered, the private keys are exfiltrated, and the users; digital assets are stolen immediately.
Evasion Techniques (Cloaking):
You may notice that some automated scanners show ;No Detections.; This is due to an active cloaking mechanism implemented by the attackers. The site serves benign content or 404 errors to automated bots and non-targeted regions, while displaying the full phishing interface specifically to English-speaking users arriving from search engin