Topic: Nano ledger S is hacked or not hack !? (Read 1537 times)

As others already have mentioned, this is the change (https://en.bitcoin.it/wiki/Change) of your transaction.

But this should only happen with older versions. When did you update your ledger the last time?

Check your version (and update if you havn't done this yet):

• Nano s firmware: 1.4.1
• Ledger manager (chrome application): 1.1.1
• Ledger bitcoin wallet (chrome application): 1.10.6

It is not confirming two transactions... it is confirming two OUTPUTS.

As Bitfort has suggested, the second output is likely to be your change address. Bitcoin does not work like traditional bank accounts. You can't send an "exact" amount unless you happen to have received that exact amount already as Bitcoins that you receive in your wallet don't actually merge into one value.

For instance, if you received:

0.1 BTC
0.2 BTC
0.2 BTC
0.5 BTC

While, your total balance is 1.0 BTC... you actually have FOUR "coins" (known as "Unspent Transaction Outputs" or UTXOs) in your wallet. If you wanted to send 0.65 BTC to someone, as you don't have a 0.65 BTC sized coin, your Bitcoin wallet would need to use several coins to get to the required amount. In this case, the wallet could use the 0.5 and 0.2 "coins"... this means you are spending 0.7 BTC worth of coins... but we're only sending 0.65 BTC... so there is 0.05 BTC left over.

This leftover amount is known as "change"... and needs to be returned to your wallet somehow. Most modern wallets will generate a new change address for each transaction you create to prevent address reuse. You just don't generally see it, as these wallets typically hide this functionality from you, whereas Ledger clearly shows it.

You can read more about change here: https://en.bitcoin.it/wiki/Change

Hi, this is OK. The second one is confirming your change address.

TIP: use your ledger with electrum wallet to see whats going on. It offers better coin control than using the original app.

Hi
I'm trying to send some BTC from my Ledger (never sent before). It asks to confirm 2 transaction: 1st one with my address and amount I want, and the 2nd one - random address O_o
2 outputs
hacked?
thnx

OK so you probably activated the segwit already. Your receiving addresses begins with 3 right?
Can you see any history (inc. outc. transactions) ?

After that you should see options LEGACY or SEGWIT (both are separate accounts). Can you? ... Seems you are in segwit account now.

I think your ledger HW firmware (Ledger OS) version is also obsolete. I have 1.1.8.  Can you enter 8 digit  PIN to yout ledger?

Ahhh ok... I see what the problem is... this:


is NOT showing you the Firmware version of the actual Ledger... it is showing you the version of the Bitcoin App that you have installed on your Ledger... the most recent version of the Bitcoin App is 1.1.10.

As I said, goto Ledger Manager... click the trashcan next to the Bitcoin App... (this does NOT wipe your coins or anything)... you may need to authorise the removal on your Ledger device. Then click the download arrow... again you may need to confirm the installation on your device:


After this, the bitcoin App on the device should be updated to 1.1.10 and you won't see the "Confirm Output#2" when sending transactions.


NOTE: to see the actual device firmware... use the "Settings" App on your Ledger device... scroll down and select "Device", then select "firmware"... it should say "Secure Element, 1.31" and "MCU, 1.0"

Do you have an "orange" Nano S? Is the casing orange in colour?



If so, that is your issue... Apparently these are special editions and can't be updated:

https://ledger.groovehq.com/knowledge_base/topics/unable-to-install-os-updater

This is why I recommend Trezor to new users more intuitive. No manager to confuse, no problems with memory. When I go back to my Nano S after a time of not using it I really appreciate how easy Trezor is to use.

Are you trying to update the actual device firmware or update the Bitcoin "app" using Ledger Manager?

With the "Ledger Manager" Chrome app... plug in the Ledger, enter your PIN etc... click "applications". The manager app will give the list of all the available apps:


Delete the "Bitcoin" app by clicking the grey trashcan icon... Then reinstall the Bitcoin app, by clicking the green "download arrow" icon.

It should say version 1.1.9 or higher... If not, you might need to update the chrome app

The question is more whether you have them installed, not whether you actively use them. If there are alternative wallet apps installed you dont intend to use, free some space.

Can you share a screenshot?

Are you using your Nano S for different coins besides BTC?
I recently ran out of space when trying to update my BTC wallet on the Nano S, after deleting some unused wallet apps, I could update the BTC one without any problems.

What firmware version are you running? What's the error when trying to update the firmware?

You were right and win a cookie. Redeemable any time.

Yay for SegWit.

*puts away the torches and pitchforks*
You were saying?!

Oh, I get it. Those weird P2SH addresses with those starting 3s.

---

Think we'll see the same thing again once bech32 addresses are out?

Welcome to August/September 2017...

Firstly, relax... your Ledger Nano S HAS NOT been "hacked"!

It was a "minor" UI issue with the Ledger due to the wallet being updated for SegWit etc... All it is asking you to do is confirm Output #2 for the transaction which is a "change" address in your wallet! Have a read here:
https://www.reddit.com/r/ledgerwallet/comments/6zgy1x/nano_s_asks_to_confirm_change_output_when_sending/
https://www.reddit.com/r/ledgerwallet/comments/6yn99h/ledger_nano_s_output2/
https://www.reddit.com/r/ledgerwallet/comments/6wws8e/comfirm_output_2/

For reference, "btchip" on reddit is the "Ledger CTO"... they know what they're talking about.

This issue should have been resolved if you update the "Bitcoin" app to at least version 1.1.9 on the Nano S using the Ledger Wallet Manager (https://www.ledgerwallet.com/apps/manager)

The output 2 is your change address.
Use e.g. electrum to check it (electrum shows you more addresses of your ledger device).


EDIT: you'd better edit the topic header (and OP)  as Ledger has not been hacked ... (if so, your coins would be gone already).

First off, wrong section - you are not selling anything, therefore this thread does not belong in the Marketplace.

However, I am going to go out on a limb and state that your Ledger has NOT been hacked. If it has, we all have serious problems to concern ourselves with.

I would think your computer is infected with a virus/malware of some sort. You could have something similar to a clipboard virus that changes the address to one belonging to an attacker. That would cause something similar to what you are seeing. If a whole new transaction has been created out of nowhere, it means your computer has been infected. If they had hacked the actual Ledger then you wouldn't be asked to confirm a transaction on your screen, they would just empty your BTC wallet and send the entire amount away to an address they control without asking you to confirm it.

I suggest you get your PC wiped and restored, and do not make any further crypto transactions on it until you have a clean install/new laptop etc.

If you really need to use your BTC in the meantime, I suggest downloading Mycelium from the Google Play Store/Apple Store, and using your seed from the Ledger to restore your funds. That way you can still transact whilst you get your computer fixed. The seed from the Ledger will work just as good on Mycelium.

Good luck, OP.

 
Is this the first issue of Nano ledger wallet? because I'm planning to buy one for my gf.

if i understand it correctly and your coins are still on the ledger, dont use the ledger but your seed to get your coins out.

FYI ♦♣♣♦ WRONG SECTION FOR THE THREAD ♦♠♠♦

Reply to thread:
Sorry for your loss. damn, you gotta be super smart about using ledger. only use on personal computer also, make sure your system have solid vpn service installed for extra security. And other measures such as anti virus, firewall...

Good Luck going forward.

bo