More disturbing is that Ledger is untill now not informing customers about this. They (or a worker of them) must be involved in the scam.
Don't spread FUD here please. It is way more likely that the E-Mail-addresses were stolen in the recent Ledger data breach. See here: Addressing the July 2020 e-commerce and marketing data breach — A Message From Ledger’s Leadership
And what about the customers home adress? Has this also been stolen? 
It looks like the following data was stolen in the Ledger data breach in July 2020:
A week after patching the breach, we discovered It had been further exploited on the 25th of June 2020, by an unauthorized third party who accessed our e-commerce and marketing database – used to send order confirmations and promotional emails – consisting mostly of email addresses, but with a subset including also contact and order details such as first and last name, postal address, email address and phone number. Your payment information and crypto funds are safe.
Is there a way to track the culprit even with IPs or anu location from their email used? Im sure its a fake changeable emailed similarly with ledger so we could report it.
Ledger already gave a statement on Reddit, in which they announced that they contacted the hosting providers to shut down the domains:
Source: https://www.reddit.com/r/ledgerwallet/comments/jhrp95/is_this_mail_from_ledger_o_is_this_fishing/