Ledger find security flaw in TROPIC01 (Trezor's Safe 7 chip)

[OmegaStarScream]

Trezor disclosed a security flaw in the TROPIC01 chip used in its Safe 7 hardware wallet after Ledger's Donjon security team identified a successful laboratory attack, but the company says the vulnerability does not put user funds at risk.

The flaw affects only one of the wallet's multiple security layers and would require physical access, specialized equipment and advanced expertise to exploit, with no evidence of real-world attacks or compromised devices.

And this is the official response from Trezor [1][2].

TLDR; This should not affect the user funds in anyway.

[1] https://trezor.io/blog/news/Trezor-response-TROPIC01-chip-disclosure-no-impact-to-your-funds
[2] https://x.com/Trezor/status/2062113395994738962

[Charles-Tim]

The site is making sign-in mandatory and there is error when I want to register an account on the site. No threat because it requires physical attack on the device?

If it is like that, it is the same just as old Trezor model One and model T that did not have the  secure element. If it is like that, I still prefer Trezor. It is one still one of the best hardware wallet.

But my preferred hardware wallet are airgapped.

My best cold wallets are the ones I set up myself on an airgapped device.

[OmegaStarScream]

The site is making sign-in mandatory and there is error when I want to register an account on the site. No threat because it requires physical attack on the device?

Yes, I believe you can only read three articles on Coindesk before making an account becomes mandatory now (switching to Incognito should allow you to read it too)

From my understanding, there is "no threat" because the chip with the security flaw is one of MULTIPLE security layers the Safe 7 device has, not because physical access is required. So this flaw (alone) should not put the user's funds at risk.

[Charles-Tim]

Yes, I believe you can only read three articles on Coindesk before making an account becomes mandatory now (switching to Incognito should allow you to read it too)

I have tried it with incognito mode, it is still the same. Probably because I have tried it before. Before I posted that, I cleared my browser cache, but was still the same. Maybe I can try the incognito on a new browser instead to know if it would work.

From my understanding, there is "no threat" because the chip with the security flaw is one of MULTIPLE security layers the Safe 7 device has, not because physical access is required. So this flaw (alone) should not put the user's funds at risk.

I have read part of the new links that you posted, I do not even see it as a vulnerability yet unless the 3 security layer has been breached. Laser fault injection attack only affected the TROPIC01 Secure Element chip, but according to Trezor there are two other layers of security that need to be breached before pin and other sensitive information can be known.

So for now, physical attack on the hardware wallet is useless.

[dkbit98]

Donjon team, this is the one good thing in whole ledger team, and I gave them credits many time.
I was just reading the post on both trezor and donjon website, and it was expected for first chip version to have some flaws.
This is one of the reasons why I didn't purchase Trezor Safe 7, it's better to wait until they release updated chip version.