Home Foren Ledger Wallet Der Hack

Ansicht von 7 Antwort-Themen
  • Autor
    Beiträge
    • 24. Dezember 2023 um 16:51 Uhr #3278123
      root_s2yse8vt
      Administrator
      Up
      0
      Down
      ::

      Könnte jemand, der genug über den Hack weiß, bitte einen ELI 5 darüber geben, wie der durchschnittliche Ledger Live-Benutzer von diesem Hack betroffen ist? Ich sende nur an mein Ledger, benutze meines Wissens keine DApps und habe mich nicht für die Passphrase-Funktion angemeldet. Ich verstehe nicht, warum Ledger nicht mit einer Erklärung aufwartet. Angesichts der Sicherheitsbilanz würde ich mich gerne nach einer besseren Alternative umsehen. Sie würden vielen Leuten einen großen Gefallen tun, wenn Sie uns aufklären würden. Vielen Dank!

    • 24. Dezember 2023 um 16:51 Uhr #3278124
      loupiote2
      Gast
      Up
      0
      Down
      ::

      > Could someone with enough knowledge about the hack please provide an ELI 5 about how the average Ledger Live user is affected by this hack?

      Well, if you need a ELI5, you probably are not using dApps, therefore you cannot have been impacted by the hack.

      A ledger library called Ledger connect-kit, used by many dApps (decentralized web3 applications) was replaced by a hacker and a malicious version was live for a few hours, causing some people using dApps to lose funds. The Hacker was able to replace the library by using social engineering with an ex ledger employee that still had high-level access to this library.

    • 24. Dezember 2023 um 16:51 Uhr #3278125
      Ruslan124
      Gast
      Up
      0
      Down
      ::

      The average user is not affected. Don’t connect to Dapps. If you don’t know what they are then don’t connect your wallet to anything other than Ledger Live.

    • 24. Dezember 2023 um 16:51 Uhr #3278126
      mreed911
      Gast
      Up
      0
      Down
      ::

      You’re not.

    • 24. Dezember 2023 um 16:51 Uhr #3278127
      Ninjanoel
      Gast
      Up
      0
      Down
      ::

      wallet connect lets you scan a qr code and log into a dapp, but you can imagine the dapp, user browser and phone doing the qr scan can be in wildy different locations, and all of this is coordinated by a central service. part of that relies on a common bit of code stored in a content distribution network (cdn), and the credentials for the person maintaining that bit of code were compromised and bad code was able to be injected into dapps.

      crazy thing is this affects more than just ledger, but has nothing to do with the hardware wallet itself.

      by everything you said you’ve nothing to worry about.

    • 24. Dezember 2023 um 16:51 Uhr #3278128
      edapalooza
      Gast
      Up
      0
      Down
      ::

      You’re fine.

    • 24. Dezember 2023 um 16:51 Uhr #3278129
      Gabriel_Ledger
      Gast
      Up
      0
      Down
      ::

      Hi, concerning the issue that we were facing, this has been fixed, this exploit did not and does not affect the integrity of Ledger hardware or Ledger Live.

      You can use your Ledger as before everything is back to normal now.

      You can learn more about it [here](https://support.ledger.com/hc/en-us/articles/15480255246365-Malicious-version-of-the-Ledger-Connect-Kit-?support=true)

    • 24. Dezember 2023 um 16:51 Uhr #3278130
      Disavowed_Rogue
      Gast
      Up
      0
      Down
      ::

      You are fine

  • Autor
    Beiträge
Ansicht von 7 Antwort-Themen
  • Du musst angemeldet sein, um auf dieses Thema antworten zu können.