Phishing-Angriff mit Einzahlungen in das Hauptbuch

Keep the money, secure your seed. Transfer to new address if any chance your seed could be compromised.

Not sure about transferring deposited $. I’ve heard of Trojans being attached to those things and being able to track where it goes. Be careful.

Given the scale of the attack, it would seem clear that an attacker or attackers have access to priviledged information about you, and possibly access to your computer / phone / network.

They *might* be trying to provoke you in to unlocking your Ledger and either manipulating a transaction you sign or otherwise draining your wallets through a machine take-over. They can’t do this without you unlocking your Ledger and connecting to c compromised machine (testament to the security of hardware wallets), so they’re trying to get you to do that. Expect lots of attempts to get at your wallets, from social engineering to threats of violence (messages along the lines of “I know where you live, we can make you give it up”) and everything in between.

If it were me, I’d go scorched earth and completely wipe and rebuild all my machines (laptops, desktops, tablets, phones etc.) and my network from known good sources. Don’t restore from backup. If you’re really worried, buy new hardware. Follow the advice given to people who suffer identify theft, hacks, account takeovers, to the letter. Don’t skip any steps. Make sure everything is as it should be, secure, and under your control.

Only then, when I’m really confident I’ve removed any threat, would I unlock my Ledger again.

Importantly, ignore the transactions that are being sent to you. Do not click into them or see if there’s any notes or details, just ignore them.

There are address poisoning attacks, but those are usually micro-transactions tricking users into accidentally copying/pasting incorrect addresses from their transaction history (because it’s filled with random deposit addresses with $0 value transfers sent to you).

the fact you’ve gotten larger deposits ($17, $22) is quite odd. I’m not sure if they’re trying to tempt you, but it seems like they are considering they’re incrementing this amount. I strongly advise ignoring these transactions and if they’re specific tokens (such as $17 of some specific token), I would ignore interacting with these tokens in any way shape or form. don’t swap, don’t send, don’t do anything. hide the tokens and ignore them.

Those are phishing attempts, ignore them. Those are attempts to make you copy paste a recent address(by the scammer) so if you just ignore those addresses and carefully check the address you transfer funds to before you send them then you’ll be fine.