::
> Could someone with enough knowledge about the hack please provide an ELI 5 about how the average Ledger Live user is affected by this hack?
Well, if you need a ELI5, you probably are not using dApps, therefore you cannot have been impacted by the hack.
A ledger library called Ledger connect-kit, used by many dApps (decentralized web3 applications) was replaced by a hacker and a malicious version was live for a few hours, causing some people using dApps to lose funds. The Hacker was able to replace the library by using social engineering with an ex ledger employee that still had high-level access to this library.