Does coldcard send the encrypted seed to third parties as default?
Is coldcard code unverifiable?
Discussion
No, and I agree the cloud backup thing is concerning. But it’s opt in at least. The Coldcard firmware is open source but you can’t build it and flash your own.
Im sure you appreciate there are trade offs in all of them, for me coldcard just seems to be a better product all round.
At best ledger has just made a massive communication error, at worst they’ve introduced a larger attack surface.
Ledger leak, the fact both my ledgers screens failed around the same time and now this was just the last straw for me.
Totally understand and partially agree. There are a lot of unanswered questions about the recovery service.