Scammers are targeting crypto hardware wallet owners by sending fraudulent physical letters impersonating Trezor and Ledger. These letters feature convincing elements like company branding, holograms, forged executive signatures, and QR codes that direct recipients to phishing sites designed to steal digital assets. Some letters bizarrely include a Ledger CEO signature on Trezor-branded mail and postmarks from within the U.S., highlighting both sophistication and mistakes in their execution. The scam attempts to create urgency by claiming upcoming mandatory features, such as an “Authentication Check” or “Transaction Check,” urging users to scan the included QR code to retain wallet access. These campaigns exploit personal data leaked in previous high-profile breaches of both companies, using home addresses and names to bolster credibility and increase psychological impact. Experts note this move to physical mail exploits trust in postal communication, making the threat seem more legitimate than digital phishing attempts. Once a crypto wallet is linked to an individual, further attacks become easier, as data from breaches remains valuable for years. Users are urged to remain skeptical, never share recovery information, and always verify requests through official company channels.