BTCUSD
D HIGH
D LOW

Data:   Charts:

Kc  · 09/01/22

Trezor devices have serious security vulnerability

Altcoin Trading Blog

Note: This report was written in 2017 and remains published for reference purposes only.


...even after any possible firmware update.
Subscribe to our RSS feed
Airdrops / Blog
  Tradingview never trade alone

In August 2017, Trezor released a security update. It updated your firmware to version 1.5.2 as older versions of firmware could make your seedphrase visible to someone who’d steal the device, took it apart and flashed it with a hacked-up firmware.

Here is the official story from Satoshi Labs:

It is important to note that this is not a remote execution attack. To exploit this issue, an attacker would need physical access to a disassembled TREZOR device with uncovered electronics. It is impossible to do this without destroying the plastic case.

In order to exploit this issue, an attacker would have to break into the device, destroying the case in the process. They would also need to flash the device with a specially-crafted firmware. If your device is intact, your seed is safe, and you should update your firmware to 1.5.2 as soon as possible.

With firmware 1.5.2, this attack vector is eliminated and your device is safe.

As it happens, the unofficial version is a lot worse:

The frantic patch creation we see now, before any coins have been lost (apparently), is because the issue was talked about at DEF CON 25. All Trezors, regardless of the firmware, use a chip that is vulnerable. According to the author of the article linked above, the chip will always be vulnerable in some way and Trezors are not safe unless all devices are replaced with ones that use safer chips.


Furthermore:

Trezor so far greatly downplays the importance of this hack. There is no long-term access needed to copy all your secret information from Trezor using this hack, it can be done just in 15 seconds. If your Trezor is stolen, you don’t even have time to transfer you funds to a new address. Government authorities can access all your Bitcoins and other crypto currencies without even asking for your consent. If you are crossing an international border, TSA can easily check your balances, etc. IRL, Trezor is as safe as leaving your cash or wallet on the table. On top of all that, your Trezor can be restored to its original state or replaced with identical Trezor with the same configuration, you wouldn’t even notice any difference until it is too late.

The exploit surely now can be done in 15 seconds at the airport since the source code for it is public.

The key to performing this hack is simply connecting two pins inside the Trezor device at the right time, even paperclip is suitable for this.

Only a simple version of this hack requires the disassembly of Trezor. A more advanced version also exists. No disassembly is required!

The author linked a satoshibox file with an exploit for the new firmware (1.5.2) but the link is broken.

What can you do?

Extend your seed with a 25th word.

Passwords in Trezor create a 25th word of a seedphrase. Trezor claims password protection makes the devices safe against this exploit, it is for researchers now to prove or disprove that.

Don’t carry your Trezor on you when you cross borders.

It is the physical access that is dangerous.

Build your own cold storage solution.

Back in the day, people used to use a spare laptop with Armory or Electrum on it. Electrum is the better choice now, BitcoinArmory is only maintained sporadically.

Learn more about Electrum in the ATNET Glossary and links there from.


Disclosure: All products featured on AltcoinTrading.NET are independently chosen, but some of the links on this page are affiliate links. Read our full content disclosure to learn more.

Latest Airdrops & Bounties - Updated Daily

new JobTribes Scholarship Giveaway - This is an opportunity to earn as much as 100 USD worth a...
new AptosBank Airdrop - A Gleam that airdrops a lot of $APB tokens. Reward per pe...
new Kingdom Story NFT Airdrop - Pool of 50 freemints and 100 USDT. Only 10 rewards for to...
new SuperVet NFT Airdrop - 30 freemints and a 200 USD worth price pool in this quick...
airdrop ArbINU Airdrop - New dog money airdrops 10 USD worth of tokens to each of ...
airdrop SixPack AI Airdrop - A quick Gleam that rewards 10 winners.
airdrop TF DAO Airdrop - Platform for launching your own Aptos NFTs that pays up t...
promo LATOKEN New Airdrops - until 6 Feb
promo P2P Trader Bonus - until 7 Feb
promo Bitforex permanent Earn products - live
promo CEX.io Hot Winter promo - live
promo BitMart Python Bot Education - live