Fake Ledger Live App on Apple App Store Stole $9.5 Million in Crypto From 50+ Victims

Fake Ledger Live App on Apple App Store Stole $9.5 Million in Crypto From 50+ Victims

A fraudulent clone of the Ledger Live cryptocurrency wallet app appeared on Apple's App Store and drained more than $9.5 million from over 50 victims between April 7 and April 13, according to CoinDesk. The fake app targeted users across Bitcoin, Ethereum, Solana, Tron, and XRP, stealing seed phrases and private keys from unsuspecting users who believed they were using the legitimate Ledger software.

How the Scam Worked

The malicious app mimicked the appearance and functionality of the legitimate Ledger Live app, which allows users to manage hardware Ledger wallets. Once installed, the fake app prompted users to enter their 24-word seed phrase — the master key to their entire cryptocurrency portfolio — under the pretense of "recovery" or "verification." With the seed phrase, the attackers could access victims' wallets from any device and drain all assets within minutes. The app reportedly remained on the App Store for several days before being removed.

Apple's App Store Review Process Under Fire

The incident puts Apple's App Store review process under renewed scrutiny. Apple charges developers a 30% commission and markets the App Store as a curated, secure marketplace — yet a malicious clone of one of the most widely-used cryptocurrency apps managed to pass review and steal nearly $10 million. Critics argue that Apple's review process is poorly equipped to detect sophisticated social engineering apps that appear legitimate on the surface but are designed to harvest sensitive user data.

The Broader Crypto App Fraud Problem

This is not the first time fake cryptocurrency wallet apps have appeared on major app stores. Google Play and Apple's App Store have both hosted malicious crypto apps that have collectively stolen hundreds of millions of dollars from users over the past several years. The problem is particularly acute for cryptocurrency users, whose assets are irreversible once stolen — there is no chargebacks, no FDIC insurance, and no customer support number to call. Once a seed phrase is compromised, the loss is permanent.

What Users Should Know

The safest way to download Ledger Live or any cryptocurrency wallet app is directly from the official developer's website, not through app store search. Users should never enter their seed phrase into any app unless they are absolutely certain of its authenticity, as legitimate wallet apps never require seed phrase entry after initial setup. Hardware wallet users should also verify that any app prompting for a seed phrase is performing a genuine hardware reset, not harvesting keys.

The Bottom Line

A $9.5 million crypto theft through a fake App Store app is a stark reminder that no marketplace review process is foolproof — and that the irreversibility of blockchain transactions makes crypto users uniquely vulnerable to social engineering attacks. Apple needs to significantly strengthen its detection of impersonation apps in high-value financial categories, or face growing pressure from regulators and victims alike.