Trezor’s newest hardware wallets boast secure components, but they remain susceptible to attacks aimed at their microcontrollers, according to Ledger.
In the ever-evolving landscape of cryptocurrency security, even the most sophisticated hardware wallets face new threats.
Experts from Ledger Donjon, the research division of crypto wallet manufacturer Ledger, have expressed concerns regarding its competitor Trezor. Despite Trezor’s strong reputation for security, its Safe models seem to be at risk from physical attacks. While these devices incorporate dual-chip architectures and certified secure elements, Ledger’s researchers contend that they are not entirely defended against skilled hackers.
In a blog post published on March 12, Ledger pointed out that the latest Trezor Safe devices were created with enhanced security features, including a two-chip configuration featuring a certified Secure Element (Optiga Trust M) for the safeguarding of PINs and cryptographic secrets. However, Ledger mentions that vital cryptographic operations “are still performed on a microcontroller,” making them vulnerable to sophisticated threat models.
“The microcontroller in use is designated TRZ32F429, which is essentially a rebranded STM32F429 chip encased in a BGA with custom markings. Despite the unique Trezor packaging, it functions electrically like a standard STM32F429, and this chip family is recognized for its susceptibility to voltage glitching, allowing for read and write access to its flash memory.”
Although the devices have features to thwart tampering, Ledger suggests that these protections are not infallible. They warn that it is merely “a matter of time and engineering effort to successfully execute an attack.” Crucially, the researchers believe this intrusion can be carried out “purely in software,” making it “extremely difficult, if not impossible,” to detect through cryptographic means or visual inspection.
Notwithstanding these vulnerabilities, Ledger acknowledges that Trezor Safe devices represent progress in crypto hardware security but stresses the need for ongoing vigilance to tackle potential supply chain issues.
In response to the research release, Trezor’s X account assured users that their assets “remain safe,” clarifying that Ledger Donjon had referred to a “previously known attack to override some of our countermeasures against supply chain attacks in Trezor Safe 3.”