Ledger, the French firm specializing in hardware wallets for cryptocurrencies, confirmed a data breach affecting customer information on January 5, 2026. The breach did not originate within Ledger’s systems but occurred at Global-e, a third-party payment processor used by Ledger for transactions made on Ledger.com since October 2023.
The incident began when Global-e detected unusual activity within its cloud infrastructure, prompting an immediate investigation by forensic cybersecurity experts, according to a statement released by Ledger. The investigation revealed unauthorized access to shopper order data from multiple companies utilizing Global-e’s services, including Ledger customers.
Compromised data included full names, email addresses, phone numbers, postal addresses, and order details such as purchase dates and items purchased. Ledger emphasized that sensitive personal data, such as dates of birth, gender, government identification numbers, and financial information like credit card or bank account details, were not accessed during the breach. Crucially, the security of Ledger’s hardware wallets, software, and users’ crypto holdings remained unaffected.
“Global-e does not have access to any individual user’s 24 words, blockchain balance, or any secrets related to digital assets,” Ledger stated, reiterating the self-custodial nature of its devices, where users retain exclusive control of their private keys and seed phrases. The company stressed that its core systems were not compromised.
The breach at Global-e highlights the inherent risks associated with third-party dependencies within the cryptocurrency ecosystem. According to a report by Hackernoon, Global-e engaged forensic experts immediately upon detecting the unusual activity. This incident follows similar data breaches at other major cryptocurrency platforms, including Coinbase and Binance, which have resulted in the exposure of customer data often exploited in phishing schemes.
Ledger has advised customers to remain vigilant for potential phishing attempts and to exercise caution when responding to unsolicited communications. Cloaked, a data privacy company, noted in a January 5th blog post that while crypto assets are safe, the exposed personal data could be used in targeted attacks.
Ledger’s statement indicated that the company was not alone in being affected by the Global-e incident, suggesting a wider scope of impacted businesses. As of January 16, 2026, Ledger has not released a comprehensive list of affected customers or the total number of individuals impacted by the breach. Global-e has not publicly commented on the extent of the data leak beyond acknowledging the incident.
