An unknown attacker has breached Ledger's Connectkit Library, stealing $484,000 from wallets, according to Lookonchain, an onchain intelligence firm.
The breach was reportedly enabled through a former employee who fell victim to a phishing attack.
Utilising this access, the attacker uploaded a malicious bug to the Ledger Connectkit Library.
The company has responded to the hack, and released version 1.1.8 to address the vulnerabilities exploited in the attack.