3777 USDC wurden direkt aus meinem Ledger gesaugt. Das sollte eigentlich nicht möglich sein

You unfortunately used a phishing site that made you sign an approval transaction to send your assets. The approval is still present – you should revoke it on https://revoke.cash for example or this attacker will still be able to drain your usdc.

You can avoid this by paying extra attention to your device display when signing something and do not proceed when you see something suspicious or unexpected

Yeah, ledgers are only as secure as the human using them

Signing dodgy transactions is the same as asking criminals to cut a new key for your house

Looks like u signed a message that allowed another user (scam website creator) to make a transaction on your behalf. This is the transaction hash 0x6191270cad6c6cdfc8492007b84b75440e93797309f7bdd569108953b58613c8 paste in etherscan, find click to see more and decode input data. Signing a message can also drain u not only confirming transactions. By signing a message u allowed him to make a transaction. Ledger won’t prevent it. This is why only your usdc is gone. U may want to setup notifications for transactions in etherscan if u just noticed it now. He drained u right after u signed the message probably (3 blocks between approval and drain). I say probably, because i don’t know if he made the approval tx right after u signed. U can’t check what messages u signed unfortunately, so can’t even look back at it, but the clues are there. Nobody can just setup approval on ur behalf if u don’t allow them.

It can only be “sucked out”if you do something to let it be sucked out.

You probably interacted with a malicious link

Always know the answer the moment i see these posts. And it’s always the exact same answer.

A fool and his money are soon parted

Didn’t read. User error. Always user error

Im new to ledger. Is signing something the same as when buying btc and choosing the platforms that ledger recommendeds on the app for example?

This is another area where crypto needs additional protections.
Way to many ways to screw up for normal folks.

Rekt

Idiot

A fool and his money are now parted.

You were the magic vacuum cleaner, unfortunately. It must be very painful to lose so much, but hopefully, you’ll recover. Just be more careful next time, don’t interact with unknown websites etc.

You probably click on malicious links. I never click on odd links and always go to the official ledger website instead. I will have complete control over my digital identity, assets, and privacy once smart wallets based on the NexeraID protocol become available.

Sorry about your mistake. I’ve learned a few hard lessons in crypto as well.

User Error . . .

Does this type of malicious hack as described above “signing spending allowances” only pertain to someone who is staking their crypto?

I do not understand what this person may have done that allowed this to happen since I have never staked any coins. I understand going to a malicious website by an incorrect address phishing type of hack.

Can you explain this possible scenario in an example for me? And it may well be due to never staking that I have never run into these allowances type of scenarios.

Stop shitcoining