What is a wallet drainer?

A wallet drainer is a malicious smart contract or script that, once approved by a user, sweeps tokens and NFTs out of the wallet. They're typically distributed via phishing sites that impersonate legitimate dApps.

What is clear-signing?

Clear-signing is the practice of displaying a transaction's actual contents - the recipient, amount, and contract call - in human-readable form on the wallet's screen before the user approves it, instead of showing an opaque hex blob.

Does this affect Ledger device prices or any token?

No. Ledger is a private company and there is no Ledger token. The piece is a security positioning statement, not a product launch or pricing event.

Ledger Bets on Hardware Verification as AI-Powered Crypto Attacks Escalate

Ledger on Monday laid out how it plans to defend hardware wallet users against a new generation of AI-powered crypto attacks, doubling down on secure-element chips and on-device transaction verification as the core moat. The Paris-based wallet maker argued in a piece published via Crypto.News that AI is reshaping both sides of the security arms race, accelerating fraud detection but also industrializing phishing, malware, and social engineering aimed at self-custody users.

By Clara Hoffmann· AI-assisted· L2 & scaling

What happened

Ledger published a piece Monday via Crypto. News outlining how the company is adapting its wallet security stack to an environment where attackers have AI in their toolkit too. The argument runs along two tracks.

First, AI helps defenders flag suspicious transactions, phishing domains, malware patterns, and abnormal wallet behavior faster than human analysts can. Second, the same technology lets attackers spin up convincing phishing sites, fake support agents, and tailored social engineering at a scale that wasn't possible two years ago. Ledger's response, per the post, is to keep the security boundary on the device itself: private keys never leave the secure element, and every transaction has to be physically confirmed on the hardware screen.

The company is framing AI not as the answer, but as a layer that sits above an unchanged hardware-first trust model.

Why it matters

Self-custody is where most retail losses happen in 2026, and the attack surface has shifted. It's not the chip that gets broken. It's the user, sitting in front of a browser, approving a malicious contract that drains a wallet in one click.

AI-generated phishing kits and deepfake support reps have made the social layer the weakest link. Ledger's bet is that the only durable defense is forcing the human to verify what they're actually signing, on a screen the attacker can't touch. That's a direct rebuttal of the software-wallet pitch that UX improvements alone can solve the problem.

It also raises the bar for competitors: if clear-signing and on-device verification become the baseline expectation, hot wallets and browser extensions have a harder story to tell on security.

Ledger Bets on Hardware Verification as AI-Powered Crypto Attacks Escalate

What happened

Why it matters

Market impact

What to watch

Disclaimer

Key takeaways

Frequently asked

Sources