Global-e detected unusual activity, engaged forensic experts, and is investigating to determine the full scope; the incident is currently contained.

Ledger says the breach affected other brands using Global-e as well, with Global-e’s cloud system containing shopper order data being accessed.

Trust Wallet issued an emergency update for Browser Extension v2.68 and launched a reimbursement program for victims, with roughly 36,000 wallets still needing updates as of early January 2026.

The report notes a prior 2020 data leak sold on the darknet and references a Trust Wallet incident where a malicious script targeted seed phrases, prompting an emergency update.

This breach follows other crypto security incidents involving Trust Wallet and MetaMask, underscoring broader industry weaknesses in update pipelines, credential management, and third‑party dependencies.

A Ledger data breach tied to third‑party processor Global-e exposed only customer contact data—names and contact information—while wallets, private keys, Ledger Live, and on‑chain assets remain untouched.

Security experts warn that phishing risk is rising for the crypto community in the wake of these breaches and stress vigilance against suspicious messages.

Observers note heightened phishing risk for hardware wallet users and reflect growing frustration, with some considering alternatives to Ledger.

Global-e does not have access to seed phrases, private keys, 24‑word recovery seeds, or blockchain balances; users should stay vigilant against phishing.

Public disclosure was prompt and aligns with evolving EU regulatory expectations on breach notifications, while highlighting off‑chain data vulnerabilities in crypto commerce.

Industry takeaway emphasizes balancing convenience with security as crypto adoption grows, calling for better vendor management, security protocols, and customer education to curb phishing and scams.

Ledger advises customers to beware of phishing attempts seeking passphrases and to never disclose 24‑word seeds; use Clear Sign to verify transactions where available.