Fake Ledger Live on Apple App Store allegedly drained $9.5M from more than 50 victims

What happened?

It has been reported that a malicious clone of Ledger Live slipped onto Apple’s App Store and has been linked to roughly $9.5 million in crypto theft. The damage reportedly occurred between April 7 and April 13, and more than 50 victims have come forward — some describing entire retirement accounts wiped out “in an instant.” Ouch. The app allegedly mimicked Ledger’s official interface well enough to trick users into surrendering access to their funds.

How did it work — and why did it hurt so much?

Details are still emerging, but it has been reported that the fake app impersonated Ledger Live closely, leveraging trust in a familiar brand to enable theft. Social engineering, polished UI, and the App Store’s veneer of legitimacy make for a dangerous cocktail. The emotional core here is raw: people losing life savings and plans for retirement when a single tap or a hurried click is all it took. That’s the human cost beyond the headline number.

Bigger picture and questions for Apple and the industry

This episode raises the same uncomfortable question we keep asking after every major wallet scam: how did this pass platform review? It has been reported that victims want faster takedowns, better verification of crypto apps, and clearer warnings for users. The incident dovetails with a broader trend of cloned apps and sophisticated phishing hitting the crypto space — a reminder that trust in app stores is not the same as trust in code. Companies, platforms, and users all have homework to do.

Sources: coindesk.com