Kraken Security Labs discovered vulnerability in Trezor hardware wallet

Experts at Kraken Security Labs reported that Trezor hardware wallets can be hacked within 15 minutes by accessing them.physical access and having special equipment.

Experts said that for a similar "attack"you need to remove the chip, then insert it into a special device or solder to it the desired number of connections. After this difficult procedure, the Trezor chip connects to a device that will send signals at certain times, violating the built-in protection that prevents the chip memory from being read by external devices. Thus, attackers can find out important data, including seed-phrase for a wallet. Importantly, the researchers managed to crack the PIN that protects this phrase and pick up a combination in just two minutes.

According to Kraken Security Labs, the reason for thisThe vulnerability lies in the specific device used by Trezor. This means that it is necessary to completely redo the wallet and all its existing models, which will be a very difficult task, so Kraken recommends that Trezor and KeepKey users do not give anyone physical access to their wallets.

The researchers added that in the event of an attack onthe hardware wallet will remain visible signs of hacking after opening the device. The only consolation is that specialized equipment is needed for hacking. To protect against such attacks, experts advised wallet owners to activate the passphrase. In this case, the password is never saved on the device, as it is added to the seed phrase for spontaneous generation of the private key. Despite the fact that this will complicate the use of the wallet, still this method can be an alternative protection against hacking.

In December, Kraken Security Labs discovered a vulnerability in the KeepKey hardware cryptocurrency wallet through which it is possible to access the user's digital assets.

</p></p>