|
Title: Another attack on TREZOR! Post by: zoza14 on August 19, 2017, 11:07:01 AM Here is yet another attack on Trezor hardware wallet!
https://medium.com/@Zero404Cool/frozen-trezor-data-remanence-attacks-de4d70c9ee8c It's quite obvious now that the people writing thee accusations are full of BS, but it would be interesting to know what is fueling these writings? What is their goal behind this? Title: Re: Another attack on TREZOR! Post by: MadGamer on August 19, 2017, 11:13:13 AM I wouldn't take these blog posts 100% for granted. Trezor already released a update for their Firmware and the issue has been fixed while the first article clearly mentioned that all hardware must be replaced. I prefer waiting the company releasing a statement regarding this then see. As from whom this is coming from, Ledger nano was already killing it. I doubt its coming from them, Its possible that its coming from some other competitors.
Title: Re: Another attack on TREZOR! Post by: mk4 on August 20, 2017, 11:30:27 AM I've already read a few posts about a vulnerability on Trezor, so I wouldn't say that they are "attacks", as Trezor already acknowledged this issue. Trezor actually posted about the vulnerability on Twitter in the past and how they're already looking at it: https://twitter.com/TREZOR/status/898532238542950400
Also, Trezor recently tweeted claiming they fixed it on the latest 1.5.2 update. I honestly wouldn't be too alarmed by this though, as a hacker would actually need to physically steal your Trezor to crack it. Title: Re: Another attack on TREZOR! Post by: TrumpD on August 20, 2017, 11:36:07 AM People voicing their fears does not equate to "attacking" Trezor. If you want to take full control over a Trezor, which would even let you load malware onto it, you can. However, the internal security logic would still wipe all the data in the unit when you did and display a warning each time the unit was started. So you can't use the firmware update path to steal secrets, nor can you trick someone into using a modified Trezor, so long as they watch the startup.
Title: Re: Another attack on TREZOR! Post by: lumeire on August 20, 2017, 03:33:27 PM I've already read a few posts about a vulnerability on Trezor, so I wouldn't say that they are "attacks", as Trezor already acknowledged this issue. Trezor actually posted about the vulnerability on Twitter in the past and how they're already looking at it: https://twitter.com/TREZOR/status/898532238542950400 Also, Trezor recently tweeted claiming they fixed it on the latest 1.5.2 update. I honestly wouldn't be too alarmed by this though, as a hacker would actually need to physically steal your Trezor to crack it. Which is why Trezor is still probably the most secure wallet you can ever use. Title: Re: Another attack on TREZOR! Post by: swogerino on August 20, 2017, 06:53:17 PM Trezor is one of the best hardware wallets but it is also old and that is why they updated their firmware. Trezor is about to make the Trezor 2 I have heard after a few months which will be a good upgrade over the existing Trezor. Every hardware wallet is fine as long as they fulfill the promise they are made for, to keep our coins 100% safe from any attack.
Title: Re: Another attack on TREZOR! Post by: 2fresh on August 21, 2017, 01:30:12 AM Misleading thread title.
People voicing their fears does not equate to "attacking" Trezor. Exactly this. Title: Re: Another attack on TREZOR! Post by: Svelto on August 21, 2017, 05:32:43 PM Misleading thread title. People voicing their fears does not equate to "attacking" Trezor. Exactly this. Yes, please change the title. It is kind of misleading. Title: Re: Another attack on TREZOR! Post by: gentlemand on August 21, 2017, 05:50:39 PM The more 'attacks' the better if it results in a more secure device. I'm not convinced anyone can design something 100% impregnable myself.
I have one but I haven't put it into action yet. |