Fake Ledger App Drains $9.5M in Crypto Heist
A counterfeit Ledger Live app on the Mac App Store stole over $9.5 million from 50+ users, including musician G. Love losing $447,000 in BTC. On-chain sleuth ZachXBT traced funds laundered via KuCoin, which froze accounts, underscoring persistent phishing threats.
Quick Take
Fake app active April 7-13, removed from App Store.
Over $9.5M stolen in BTC, SOL, XRP, USDT.
G. Love lost 5.92 BTC (~$447k) to the scam.
Funds laundered through 150+ KuCoin deposit addresses.
Market Impact Analysis
BearishSecurity incidents erode trust in self-custody and could deter less technical users, though market-wide price impact is limited.
Speculation Analysis
Key Takeaways
- A fake Ledger Live app on the Mac App Store stole over $9.5 million in crypto from 50+ users between April 7–13.
- Musician G. Love lost 5.92 BTC (~$447,000); at least three victims lost over $1.95 million each.
- On-chain sleuth ZachXBT traced stolen funds through 150+ KuCoin deposit addresses; KuCoin froze a suspicious account.
- The incident exposes ongoing phishing risks for self-custody users, even on official app stores.
What Happened
A counterfeit app mimicking Ledger Live appeared on Apple’s Mac App Store, siphoning crypto from unsuspecting self-custody users. Active from April 7 until removal on April 13, the application stole Bitcoin, Solana, XRP, USDT and other assets. Musician G. Love disclosed losing his 5.92 BTC retirement stash. On-chain analyst ZachXBT swiftly traced the funds through a web of over 150 KuCoin deposit addresses linked to a mixing service. KuCoin froze the flagged account after notification, but the app remained downloadable for almost two more days, amplifying losses.
The Numbers
Total damage exceeded $9.5 million, with more than 50 wallets compromised. Three victims suffered losses surpassing $1.95 million apiece; one wallet was gutted of $3.27 million in USDT. G. Love’s 5.92 BTC translated to roughly $447,000 at the time of theft. The laundering operation funneled assets through 150+ KuCoin addresses in a short window.
Why It Happened
The heist succeeded due to a lapse in Apple’s app review, allowing a polished fake to mimic a trusted brand. Users inherently trust official stores, bypassing deep scrutiny. Phishing campaigns increasingly target self-custody setups, where a compromised interface can exfiltrate seed phrases. This case underscores the dangerous intersection of human error and sophisticated social engineering in crypto.
Broader Impact
The breach chips away at confidence in app stores as safe havens for crypto tools. Hardware wallet users must now question every download, potentially driving adoption of direct verification methods. Exchanges like KuCoin face mounting pressure to detect laundering patterns proactively. The event may spur regulatory calls for tighter app vetting and cross-platform coordination.
What to Watch Next
- Ledger’s official response and any security guidance for users.
- Whether Apple tightens review processes for financial apps.
- KuCoin’s handling of frozen funds and possible law enforcement involvement.
This article is for informational purposes only and does not constitute financial advice.
Always late to trends?
Join for the latest news, insights & more.
Disclaimer: Bytewit is an independent media outlet that delivers news, research, and data.
© 2026 Bytewit. All Rights Reserved. This article is for informational purposes only.
