Ledger users who are careless enough to download this bogus Google Chrome extension can lose all their coins

The Twitter handle of Ledger Support has alarmed its followers about a fake Google Chrome extension that can potentially steal all of their funds.

🚨PHISHING ALERT🚨



A fake Chrome extension has been found, asking to enter your 24 word recover phrase



⚠️NEVER share your 24 words

⚠️NEVER enter your 24 words into any internet-connected device

⚠️Ledger will NEVER ask for your 24 words



Read more: https://t.co/QNoSwptn3U https://t.co/QZKMmT6TMf — Ledger Support (@Ledger_Support) March 5, 2020

Beware of phishing attacks

While hardware wallets are believed to be the best way to protect cryptocurrency holdings, their owners also have to exercise extreme caution. Otherwise, they might become victims of numerous phishing attacks.

Case in point: the malicious extension called Ledger Live that poses as the company's software for desktop and mobile platforms. According to ZDNet, its only purpose is to record 24-word seed phrases of uninitiated users in a Google Form.

Costly mistakes

In early January, Twitter user @hackedzec lost $16,000 worth of ZEC after downloading another fake Google Chrome extension for his Ledger wallet. This vividly shows how expensive such mistakes can be.

Back in April 2019, Ledger also issued a warning about malware that was able to replace its legitimate desktop application with a fake one and steal mnemonic phrases.