Trezor hardware flaw, hackeable. | Bitcointalksearch.org

XXX_BTC1@

newbie

Activity: 28

Merit: 0

Quote from: luicon on August 18, 2017, 01:11:24 AM

https://medium.com/@Zero404Cool/trezor-security-glitches-reveal-your-private-keys-761eeab03ff8

i just came across this.

at trezor website they said its fixed/patched with the 1.5.2 firmware,

https://cdn-images-1.medium.com/max/1000/1*wZCWyhLJHmg_6S2XqFwdTQ.jpeg

compare to other wallets trezor is the best and secure wallet. it is easy to use interface for your trezor device. now more hardware wallets are available in the market. so in that trezor is the best and secure wallet once try to this wallet if you get more security for your bit coin. trezor is one of the trusted hardware wallet for bit coin. we have to carry it is easily. no one can hack to this wallet. so you have to choose and use trezor wallet.

john2231

hero member

Activity: 924

Merit: 1001

Quote from: BeastLee on August 18, 2017, 02:03:46 PM

This is exactly why I don't trust hardware wallets like this. I would rather flip a coin and write down the key myself if I had enough patience. At any point in time, Trezor could start spitting out backdoors into their hardware wallets. And for that reason, I will never use one.

Well taking down note of your private keys still not safe in the paper it can be still be someone can read your private keys or your paper can be disappear and forgot where you put your paper wallet ..
For me the best thing for me is to save my bitcoins and use the camera to have a picture also the barcode which is you can help to save your private keys via bar code and import it in the wallet once you need it save your private keys and barcode with password in your phone and privately sync it to your google drive this is just for backup once your computer crash or corrupted and never had any problem with it..
Just like the quoted there are wallet with different pros and cons there are no wallet are very secured and never experience any issue..

Quote from: TryNinja on August 18, 2017, 03:12:10 PM

Quote from: BeastLee on August 18, 2017, 02:03:46 PM

This is exactly why I don't trust hardware wallets like this. I would rather flip a coin and write down the key myself if I had enough patience. At any point in time, Trezor could start spitting out backdoors into their hardware wallets. And for that reason, I will never use one.

You still need physical access to the hardware to do this kind of "hack". And looks like they already fixed it.

If someone has access to your paper wallet, they will have access to your wallet aswell. Everything has their pros and cons. It's not like it's much safer.

TryNinja

legendary

Activity: 2758

Merit: 6830

Quote from: BeastLee on August 18, 2017, 02:03:46 PM

This is exactly why I don't trust hardware wallets like this. I would rather flip a coin and write down the key myself if I had enough patience. At any point in time, Trezor could start spitting out backdoors into their hardware wallets. And for that reason, I will never use one.

You still need physical access to the hardware to do this kind of "hack". And looks like they already fixed it.

If someone has access to your paper wallet, they will have access to your wallet aswell. Everything has their pros and cons. It's not like it's much safer.

BeastLee

newbie

Activity: 35

Merit: 0

This is exactly why I don't trust hardware wallets like this. I would rather flip a coin and write down the key myself if I had enough patience. At any point in time, Trezor could start spitting out backdoors into their hardware wallets. And for that reason, I will never use one.

Caesar-Giulius

sr. member

Activity: 728

Merit: 250

Buy, sell and store real cryptocurrencies

Thank you for the information, hopefully the hardware wallet can have better security.

BitcoinNewsMagazine

legendary

Activity: 1806

Merit: 1164

Trezor fixed exploit with firmware update 1.5.2 https://blog.trezor.io/fixing-physical-memory-access-issue-in-trezor-2b9b46bb4522 case closed no more FUD

KeepKey is probably not vulnerable according to dev but they will update firmware if needed. Leger Nano S not affected.

n3rvi0zz0

sr. member

Activity: 289

Merit: 250

Quote from: HeRetiK on August 18, 2017, 11:58:21 AM

It's good to see SatoshiLabs taking the necessary steps as swift as they did.

Apart from that, as long as physical access to the Trezor is necessary to hack it, I'm not really worried. XKCD's infamous $5 wrench attack would worry me more in this case.

Quote from: n3rvi0zz0 on August 18, 2017, 01:33:18 AM

a matter of time all the hardware/software is hacked no surprises

always use a papper wallet

Did you write your seed words by hand or did you use a printer? Because some printers store printed pages in an internal data storage. Just a heads up for when you throw out your old printer.

of course by hand i throw away my new hp as soon as i saw she was storing and SENDING a fucking copy of everything i have printed

world is becoming, unsafe and weird

HeRetiK

legendary

Activity: 2912

Merit: 2066

Cashback 15%

It's good to see SatoshiLabs taking the necessary steps as swift as they did.

Apart from that, as long as physical access to the Trezor is necessary to hack it, I'm not really worried. XKCD's infamous $5 wrench attack would worry me more in this case.

Quote from: n3rvi0zz0 on August 18, 2017, 01:33:18 AM

a matter of time all the hardware/software is hacked no surprises

always use a papper wallet

Did you write your seed words by hand or did you use a printer? Because some printers store printed pages in an internal data storage. Just a heads up for when you throw out your old printer.

luicon

sr. member

Activity: 262

Merit: 250

Quote from: n3rvi0zz0 on August 18, 2017, 01:33:18 AM

a matter of time all the hardware/software is hacked no surprises

always use a papper wallet

well, paper wallet is no safer than a trezor,
when you need to move money you need to insert the private key on the computer,

any hardware wallet will never share the private key with a computer, it will just sign the transaction, making it valid without sharing the private key,

this hack shows its possible to retrieve all founds from a trezor, in case you lose it or someone stole it from you,

n3rvi0zz0

sr. member

Activity: 289

Merit: 250

a matter of time all the hardware/software is hacked no surprises

always use a papper wallet

luicon

sr. member

Activity: 262

Merit: 250

https://medium.com/@Zero404Cool/trezor-security-glitches-reveal-your-private-keys-761eeab03ff8

i just came across this.

at trezor website they said its fixed/patched with the 1.5.2 firmware,

Topic: Trezor hardware flaw, hackeable. (Read 1053 times)