Ledger, a provider of hardware cryptocurrency wallets, has declared its intention to compensate all users impacted by the recent breach of the Ledger Connect Kit. This announcement came on December 20, following a series of incidents that affected various decentralized applications (DApps) using Ledger's connector library, including notable platforms like SushiSwap and Revoke.cash. These breaches, which occurred on December 14, 2023, led to significant financial losses for many investors.
In response to this situation, Ledger has pledged to fully support and compensate the victims of these incidents. The company has committed to finalizing this process by the end of February 2024, employing various methods, including goodwill gestures. Ledger has been actively engaging with the affected users, aiming to address and resolve their individual concerns.
Furthermore, Ledger has outlined plans to enhance security measures within the DApp ecosystem. The company will continue supporting explicit signing on its devices but will phase out the option for blind signing by June 2024. Ledger's objective is to collaborate with the DApp community to establish 'Clear Signing' as a standard practice. This approach will enable users to verify all transaction details on Ledger devices before providing their digital signature, thereby enhancing security and user protection within the DApp environment.
