Hardware wallet users of Trezor and Ledger are being targeted by a sophisticated phishing campaign using physical mail, including fake letters with holograms and forged signatures. Attackers exploit leaked personal data from prior breaches to add credibility and push victims to scan malicious QR codes that can steal digital assets. Security experts warn this tactic intensifies psychological pressure and urge users to verify all communications and never share wallet backups.