Philadelphia-based musician Garrett Dutton frontman of G. Love & Special Sauce was setting up his Ledger hardware wallet on a new MacBook. He searched for Ledger Live in Apple’s Mac App Store, downloaded what appeared to be the official app listed under a developer like SAS SOFTWARE COMPANY, not Ledger itself, and followed its prompts.
The fake app tricked him into entering his 24-word recovery seed phrase. Moments after he did so, nearly 5.92 BTC worth roughly $420,000–$424,000 at the time was drained from his wallet—his entire retirement savings accumulated over about a decade.
Blockchain investigator ZachXBT traced the stolen funds through several transactions to deposit addresses on the exchange KuCoin, where recovery is considered unlikely. At least one other victim lost 4.15 BTC to the same or a very similar fake app. The malicious app has since been removed from the Mac App Store, but it managed to bypass Apple’s review process long enough to cause damage.
Never enter your seed phrase into any software or website. Legitimate Ledger or any hardware wallet software will never ask for it. The whole point of a hardware wallet is to keep the seed offline. Always go directly to the official source: Download Ledger Live only from ledger.com or the verified official links. Double-check the developer name and read reviews carefully.
App stores (Apple and Google) are not immune to fakes. Scammers create convincing lookalikes that mimic the UI and even show fake balances or setup flows. When setting up or restoring a wallet, do it on a trusted, clean device and verify everything independently.
G. Love posted about it publicly on X, urging others to be careful. It’s a painful reminder that even high-profile people can fall for sophisticated social-engineering attacks when they’re in a hurry or on new hardware. If you use a Ledger or any self-custody wallet, take a moment to verify your current setup and bookmark the official download page.
Sorry to hear about stories like this—they highlight why education around seed phrase security is so critical in crypto. The musician lost ~5.92 BTC ?$420K–$424K at the time, representing nearly a decade of retirement savings. Funds were drained instantly after entering the seed phrase and appear largely unrecoverable after routing to KuCoin deposit addresses.
This highlights how even trusted platforms like the Apple Mac App Store can host convincing fakes that bypass initial review. Similar incidents like past fake Ledger apps on other stores show seed-phrase theft remains a high-impact vector, especially during wallet setup or device migration.
Questions arise about Apple’s vetting process for crypto-related apps. The malicious app under a non-Ledger developer was live long enough to cause damage before removal; no public statement from Apple yet. Ledger has long warned that legitimate software never asks for your 24-word seed phrase.
Crypto security reminder: Reinforces core best practices — download only from official sites, never enter seed phrases into software, and verify developer names and reviews. Hardware wallets protect keys only if the seed stays offline. Crypto phishing and fake wallet apps continue to evolve and target high-profile or everyday users alike, with quick laundering reducing recovery odds.
At least one other victim lost 4+ BTC in a similar case, and some reports suggest the app may have impacted more people. In short, it’s a stark example that self-custody demands constant vigilance—no app store or brand is foolproof. Always double-check sources directly.
The Aave DAO Passes AIP 469 Governance which Approved $25M Grant to the DAO
The Aave DAO has approved a $25 million stablecoin grant plus additional tokens to Aave Labs. The DAO passed AIP 469; the first binding proposal under the new Aave Will Win framework with roughly 75% support — 522,780 AAVE tokens in favor versus 175,310 against.
Key Details of the Proposal
$25M in stablecoins primarily in a EthLidoGHO and other major stablecoins to cover Aave Labs’ operating and growth expenses for one year — the largest single governance-approved funding round for the core development team to date. $5M released immediately upon execution with the remaining $20M streamed in tranches over 6- and 12-month periods.
Additional 75,000 AAVE tokens worth roughly $6–7M at recent prices allocated to Aave Labs, vesting linearly over 4 years (48 months) to align long-term incentives for developers. This grant is part of a broader strategic shift proposed by Aave founder Stani Kulechov. The framework aims to: Direct 100% of product revenue from Aave-branded products back to the DAO/community treasury (formalizing revenue control and benefiting token holders).
Move away from service provider lock-ups that might favor certain entities at the expense of the broader community. Fund core development while holding teams accountable through structured, time-bound allocations. The proposal is described by some including Stani as one of the most important in Aave’s history, signaling a more token-centric and sustainable governance model for the DeFi lending protocol.
AAVE price jumped around 4–5% with some reports of over 10% intraday moves following the news, reflecting positive sentiment around continued investment in protocol growth. The largest no vote came from the Aave Chan Initiative ?166,200 AAVE tokens against, highlighting some ongoing tensions in the community around governance spending and priorities.
This move underscores Aave’s maturing DAO governance: using treasury funds transparently to support development while tying incentives to long-term value accrual for token holders. It’s a significant step for one of DeFi’s largest lending protocols as it prepares for further upgrades including elements of a V4 roadmap.
Aave V4 is the most significant architectural overhaul of the Aave protocol since its early versions. It shifts from the isolated, per-market design of V3 to a modular Hub & Spoke model that unifies liquidity while isolating risk. This enables greater capital efficiency, easier scaling to new assets and markets including real-world assets or RWAs, and support for institutional use cases without fragmenting pools.
Liquidity Hub (Hub): A central liquidity pool on each network that holds all supplied assets and provides a unified source of capital. It grants credit lines to individual Spokes and handles overall accounting. Specialized, modular lending markets built on top of the Hub. Each Spoke can have its own risk parameters, collateral rules, interest rate models, and target users.
Spokes borrow from and repay to the Hub, allowing tailored experiences while sharing deep liquidity. Benefits over V3: Reduces liquidity fragmentation across multiple isolated pools. Improves capital efficiency (idle capital can be better utilized). Enables governance to add new features, assets, or markets more easily without full liquidity migrations.
Supports trillions in assets scale by isolating different risk profiles e.g., high-risk volatile assets vs. low-risk stable or RWA collateral. At launch on Ethereum mainnet, it started with three initial Hubs like Core, Prime, and Plus offering different risk profiles, with conservative supply and borrow caps that the DAO can gradually increase.
