Atlas21
  • ‎
No Result
View All Result
Atlas21
No Result
View All Result
Atlas21
Home Bitcoin

Vulnerability discovered in Trezor Safe devices by Ledger team

Newsroom by Newsroom
March 17, 2025
in Bitcoin
Scoperta vulnerabilitĂ  nei dispositivi Trezor Safe grazie al team di Ledger
Share on FacebookShare on TwitterShare on Linkedin

The Ledger open-source research team has discovered and reported a vulnerability in Trezor’s Safe 3 and Safe 5 devices.

According to a post published on X on March 12, the Ledger open-source research team, known as Ledger Donjon, identified a flaw in the microcontrollers of Trezor’s Safe 3 and Safe 5 models. Despite Trezor’s recent security improvements, Ledger found that cryptographic operations can still be performed on the microcontroller, potentially exposing the devices to more “advanced attacks”.

At @Ledger, you might know that we have the @DonjonLedger, our dedicated team constantly conducting open security research.

We recently worked with Trezor, revealing that their Trezor Safe 3 was susceptible to physical supply chain attacks. Here's a thread on our findings:đź§µ pic.twitter.com/CORDOQWRYg

— Charles Guillemet (@P3b7_) March 12, 2025

Charles Guillemet, Chief Technology Officer at Ledger, stated:

“We believe that making the ecosystem more secure helps everyone, and is critical as we push towards broader adoption of crypto and digital assets.”

Trezor had already implemented Secure Elements (SE)—chips designed to protect users’ PIN codes and cryptographic secrets—since earlier Trezor devices could be compromised by modifying the running software, potentially allowing attackers to steal users’ funds. According to Ledger, this implementation “effectively hinders any low-cost hardware attack, particularly voltage glitching,” ensuring users’ funds remain protected even if the device is lost or stolen.

However, Ledger identified another potential attack vector originating from the microcontroller, the other main component of Trezor’s dual-chip design in the Safe 3 and 5 models. Trezor implemented firmware integrity checks to detect modified software, but Ledger demonstrated that an attacker can still bypass this security measure.

Source: Ledger

Trezor confirmed on X that users’ funds remain safe and no action is required. However, when asked whether the issue could be fixed via a firmware update, the hardware wallet provider responded:

Hi, unfortunately not. In cybersecurity, the golden rule is simple: nothing is fully unbreakable. That’s why we have already implemented a multi-layer defense against supply chain attacks and always advise our users to purchase from official sources.

— Trezor (@Trezor) March 12, 2025
Previous Post

The strategic Bitcoin reserve is for businesses, not for states

Next Post

Russia: the Central Bank opens crypto trading to qualified investors

Latest News

bitcoin
Bitcoin

Cantor Fitzgerald launches Bitcoin fund with gold hedge

by Newsroom
May 30, 2025
0

A new investment vehicle combines exposure to Bitcoin with downside protection based on the price of gold.

Read moreDetails
bitmain
Bitcoin

Bitmain unveils the Antminer S23 Hydro: unprecedented efficiency

by Newsroom
May 31, 2025
0

Bitmain’s new device raises the bar for energy efficiency.

Read moreDetails
lightning network
Bitcoin

Amboss launches Rails: a service to earn yields from the Lightning Network

by Newsroom
May 30, 2025
0

The company unveils a service to generate returns from the Lightning Network while maintaining full control over one’s bitcoin.

Read moreDetails
Arkham rivela l’87% degli indirizzi Bitcoin di Strategy
Bitcoin

Arkham reveals 87% of Strategy’s Bitcoin addresses

by Newsroom
May 30, 2025
0

The blockchain analytics firm claims to have identified the Bitcoin addresses held by the company led by Saylor.

Read moreDetails
blockstream
Bitcoin

Blockstream launches a non-custodial app to buy Bitcoin

by Newsroom
May 30, 2025
0

At Bitcoin 2025, the company unveils the Blockstream App and a strategic roadmap to accelerate adoption.

Read moreDetails
Atlas21

© 2025 Atlas21

Navigate Site

  • About
  • Home
  • Feature
  • Bitcoin
  • Careers
  • Opinion
  • Interviews
  • Privacy Policy
  • News
  • Learn
  • B2B
  • Press
  • Cookie Policy

Follow Us

No Result
View All Result
  • News
  • Interviews
  • Learn
  • Feature
  • Services
  • Adoption
  • ‎
    • ‎

© 2025 Atlas21

We use cookies to ensure that we give you the best experience on our website. If you continue to use this site, we will assume that you are happy with it.AcceptCookie