How dangerous are hardware wallet updates?

[Coin-Keeper]

One thing that has not been discussed in this thread is using software with a much larger attack surface when you don't need to.  Expanding the thought --- >  IF you are trading or hodling Bitcoin as a user WHY would you install the generic software for all the shitcoins and stuff?

Many if not most Trezor users (at least in my case anyway) are trading are keeping BTC only.  Make SURE to use Bitcoin ONLY software in your Trezors.  Simple and much smaller attack surface for someone with nefarious intentions.  I have to feel that the BTC only software would be easier to verify IF something went amiss.  And of course on the user's end the software verifies itself during upgrade.  So destruction in transit is not a thing to worry about, only the thought that a bad package was being sent by the "mothership", which is very unlikely.  

I won't personally send any coins using a version of Suite until its been released for 2 weeks.  An arbitrary thing I do.  Strangely I don't feel this way about Electrum versions due to the simplicity of verification and the fact that the files are GPG signed by THREE advanced developers during release.



MY .02

[Forsyth Jones]

Hello,

Everytime I open my Trezor Suite and I am being asked to perform an update I get a bit nervous that maybe something can go wrong.
I understand that the updates have advantages too, but how big is the chance that scammers have somehow gotten a fake update into your Trezor Suite App and you accidentally install that one?
I usually try to postpone updates for as long as possible. Is it possible to never update the Suite and still keep using it without problems, or will it be impossible and will I possibly even lose my coins if I never update?

I'm trying to find the wisest way how to deal with updates and would like to hear some input, thanks!

What is more risky for you? Not updating or keeping it updated? New updates usually come with bug fixes, new features and security improvements. The main purpose of these firmware updates is to improve security.

One of the plausible risks would be if you download a tampered firmware file. However, in most hardware wallets, updates are made directly from the device management application. These firmware files already come with the binary signed by the manufacturer. This verification is performed before installation. Other manufacturers, such as Trezor, allow the user to manually verify the signature.

[Pmalek]

The suite has recently implemented an auto-update option.
Somehow, but I don't think it's the smartest decision, because the update fails only after a few days of use. I would rather wait until a certain period of testing has passed, I think that often just a few days are enough.

I saw that in Trezor's release notes a few days ago. I don't like the idea of Trezor Suite automatically updating either, and luckily you can tick/untick the option to allow the software to automatically update in the settings.
That's still better than what Ledger did with Ledger Live. I am not sure since I haven't updated LL for a long time, but I believe they added automatic updates to their software as well but without giving end-users an option to disable them. Can someone who still uses Ledger Live and has an updated version confirm if this is true?

[dkbit98]

The suite has recently implemented an auto-update option.
Somehow, but I don't think it's the smartest decision, because the update fails only after a few days of use. I would rather wait until a certain period of testing has passed, I think that often just a few days are enough.

This is still only optional automatic-updates (change is available in settings), so I would not check the box, but this is just updates for Trezor app, not for Trezor device firmware, there is a big difference.
You don't even have to use Trezor Suite if you are only using Trezor device with Bitcoin, Electrum and Sparrow are working great, but they also hjave updates

[Flexie80]

The suite has recently implemented an auto-update option.
Somehow, but I don't think it's the smartest decision, because the update fails only after a few days of use. I would rather wait until a certain period of testing has passed, I think that often just a few days are enough.

I saw that in Trezor's release notes a few days ago. I don't like the idea of Trezor Suite automatically updating either, and luckily you can tick/untick the option to allow the software to automatically update in the settings.
That's still better than what Ledger did with Ledger Live. I am not sure since I haven't updated LL for a long time, but I believe they added automatic updates to their software as well but without giving end-users an option to disable them. Can someone who still uses Ledger Live and has an updated version confirm if this is true?

Can you tell me, is the auto-update box ticked or unticked with Trezor Suite if you didnt change anything as a user?

[examplens]

Can you tell me, is the auto-update box ticked or unticked with Trezor Suite if you didnt change anything as a user?

It came with some Trezor suite updates and was unchecked by default. And, it cannot be said that they imposed this option. Alos, I noticed it only after the next update.
There is an option to turn this feature on or off in the settings

[Pmalek]

Can you tell me, is the auto-update box ticked or unticked with Trezor Suite if you didnt change anything as a user?

It doesn't really matter because it's an optional feature. If you can't find it in your settings, it means you are using an older Trezor Suite version. The next time you update it, check the settings, find the automatic update option, and check if it's ticked or not. Untick it if you don't want Trezor to install updates for you, and you are done. 

[examplens]

Can you tell me, is the auto-update box ticked or unticked with Trezor Suite if you didnt change anything as a user?

It doesn't really matter because it's an optional feature. If you can't find it in your settings, it means you are using an older Trezor Suite version. The next time you update it, check the settings, find the automatic update option, and check if it's ticked or not. Untick it if you don't want Trezor to install updates for you, and you are done. 

I understand his concern. Almost all applications must have additional subsequent settings because many features are included by default that users would otherwise not activate independently.
The Trezor suite has also undergone many changes and additions compared to the first version, and most users do not pay attention to the fine print of additional terms.

[Saint-loup]

One thing that has not been discussed in this thread is using software with a much larger attack surface when you don't need to.  Expanding the thought --- >  IF you are trading or hodling Bitcoin as a user WHY would you install the generic software for all the shitcoins and stuff?

Many if not most Trezor users (at least in my case anyway) are trading are keeping BTC only.  Make SURE to use Bitcoin ONLY software in your Trezors.  Simple and much smaller attack surface for someone with nefarious intentions.  I have to feel that the BTC only software would be easier to verify IF something went amiss.  And of course on the user's end the software verifies itself during upgrade.  So destruction in transit is not a thing to worry about, only the thought that a bad package was being sent by the "mothership", which is very unlikely.  

I won't personally send any coins using a version of Suite until its been released for 2 weeks.  An arbitrary thing I do.  Strangely I don't feel this way about Electrum versions due to the simplicity of verification and the fact that the files are GPG signed by THREE advanced developers during release.

If you only use Bitcoin, the safest way to hold your bag with an HW you need to connect and upgrade regularly, is to use a multisig wallet. With a multisig wallet you don't care of any software or firmware update, since neither the provider, nor any of their hacker will be able to know the second seed/key of your wallet. For that an attacker would need to hack your second device/computer on top of your first hardware wallet. So IMO, instead of staying concerned by Trezor Suite and firmware updates you should take a little moment to set up a multisig wallet with your Trezor device.