Just received this email
https://www.ledger.fr/2018/03/20/firmware-1-4-deep-dive-security-fixes/We announced on March 6th the availability of a new firmware update. As part of our transparency process, we are publishing today all information regarding the security issues patched in the firmware.
Please follow our step by step guide to update your Nano S if not done already.
Read our full disclosure report regarding patched security issues
Summary
The firmware update patches three security issues. The attack vectors are complex and most of them require physical access to your device. To our knowledge, none of these attacks have been demonstrated in real life.
Please refer to our full disclosure report to get a detailed technical review.
What to do?
The update process verifies the integrity of your device and a successful 1.4.1 update is the guarantee that your device has not been the target of any of the patched attack. There is no need to change your seed.
If your device doesn't update, it doesn't mean it has been compromised. The update process requires some manipulations, please read the step by step guide. You do not need to have your seed with you, but you must make sure it is properly secured (and potentially available) before starting the update.
If you are having difficulties with the update, please refer to our firmware update FAQ.
Firmware 1.4 step by step upgrade guide
Firmware 1.4 FAQ
Copyright © 2018 Ledger, All rights reserved.
You are receiving this email because you opted in at our website ledgerwallet.com
Our mailing address is:
Ledger
1 rue du Mail
Paris 75002
France
https://www.ledger.fr/2018/03/20/firmware-1-4-deep-dive-security-fixes/