Ledger's CEO Pascal Gauthier has addressed the recent hack, labeling it as an isolated incident and affirming the company's commitment to enhanced security.
Gauthier explained that the hack, affecting Ledger's Javascript connector library, was contained within two hours and did not impact Ledger hardware or the Ledger Live platform.
The breach occurred due to a former employee falling victim to a phishing attack, leading to unauthorised access to the company's systems.
In response, Ledger is planning to implement stronger security controls, particularly connecting their software supply chain security to the NPM distribution channel.