Urgent for Blockstream Jade and Trezor 3 users:
Security researchers discover critical vulnerability (CVE-2025-27840) in ESP32 chip, used in several renowned bitcoin hardware wallets.
This vulnerability allows attackers to forge ECDSA signatures and make unauthorized transactions, according to Crypto Deep Tech.
Block stream Jade's exploit is through its Bluetooth and WiFi capability.
Trezor is a supply chain exploit, where malicious actors can steal keys before reaching the end user.
"The article he is amplifying was debunked and 'backdoor' claims retracted an entire month ago. Jade is fine."
-Grubles
"After receiving concerns about the use of the term 'backdoor' in the company's announcement to describe undocumented commands in Espressif's ESP32 microchips, we have updated our title and story."
-Bleeping Computer on https://www.bleepingcomputer.com/news/security/undocumented-commands-found-in-bluetooth-chip-used-by-a-billion-devices/
Jade is fine.
nevent1qqstzrt625g777jwtfvqe7nsxr0vd9pwhsuzfda2t6l3jq9ww0ghl6qpr3mhxue69uhkummnw3ezucnfw33k76twv4ezuum0vd5kzmqzyq6ksa0l6u5mqmhtfswh5u9p7agqghgxwa6dy8q04lly4u4lj63wsqcyqqqqqqglwn7eh
multi sig
Whether debunked or not, is a vote for multisig
