Ripple Chief Technology Officer David Schwartz has issued a urgent warning about the escalating threat of phishing scams targeting hardware wallet users. According to Schwartz, these attacks are now the top security risk, exploiting human error rather than technological flaws in wallet design.
Scammers are deploying sophisticated methods, including fake emails and websites that mimic official wallet providers, to trick users into revealing their seed phrases under the guise of firmware updates, security verifications, or account checks. Once a seed phrase is entered on a fraudulent platform, attackers can remotely access and drain funds within minutes, with no recourse for recovery.
The surge in phishing attempts correlates with increased investor movement of assets into cold storage amid market uncertainty. Schwartz noted that inboxes are flooded with these deceptive messages, emphasizing the immediacy of the issue. Earlier this year, Coinbase suffered approximately $400 million in losses due to social engineering scams targeting its support staff, underscoring that these attacks bypass cryptographic security by manipulating trust.
Cybercriminals are leveraging advanced tools such as AI-generated content, cloned websites, and deepfake technology to enhance credibility. For instance, a recent deepfake video falsely depicted Ripple CEO Brad Garlinghouse promoting XRP-related scams, illustrating the growing sophistication of digital impersonation.
Schwartz reiterated that hardware wallets are secure by design but cannot guard against human mistakes. "Phishing sidesteps cryptography and exploits trust," he stated, urging users to never input seed phrases anywhere except the hardware wallet itself and to independently verify all communications through official channels.
BNB
PEPE
BTC
ETH
SOL
USDC
FIL
XTZ
NEAR