Nostr Web Client

Bitcoin.Review 9mo ago

🚨 Trezor Safe 3 vulnerability

Ledger Donjon demonstrated they could bypass firmware checks and run malicious code — enabling remote recovery of user funds.

Why? Critical ops still run on the MCU, not the Secure Element.

nostr:nprofile1qqsw3znfr6vdnxrujezjrhlkqqjlvpcqx79ys7gcph9mkjjsy7zsgygpr3mhxue69uhkummnw3ezumt4w35ku7thv9kxcet59e3k7mgpzamhxue69uhhyetvv9ujucm4wfex2mn59en8j6ggdd5uv & nostr:nprofile1qqsvak4cr0jzaarahhn98a9602e94sa2xt8u9dnjac8cns86lzp0z0sprfmhxue69uhhqatjv9mxjerp9ehx7um5wghxcctwvshszxrhwden5te0dehhxarj9enx6apwwa5h5tnzd9az7nh3jrs break it down in BR094.

https://m.primal.net/QIgN.mp4

Reply to this note

Please Login to reply.

Discussion

zBTCowany 9mo ago

I guess if you have airgapped hardware and hey can shove it. That’s the whole problem with cables and directly connecting them to devices