With verified software, much better than most hardware wallets.
To be fair to BitKey and one or two others, this attack doesn’t apply to Multisig wallets, anti-exfil doesn’t actually matter if you’re not doing single-sig.
So the acceptable-security hardware wallet list is BitKey, Jade, and BitBox. nostr:note1m80q3p6pfxl6elt7dcpu076fmcwjymz942z4esumm5ku3mrsz2lqanga9y
Hardware Wallets are devices designed to hold bearer assets which can be trivially stolen if you leak the private key(s). There’s many, many people involved in the manufacture of each hardware wallet, each of which might wish to make free money by backdooring the hardware wallet. For every other hardware wallet, you’re blindly trusting Amazon/UPS/five factories in China/the webserver you got the firmware from/etc/etc. Sure, most hardware wallets have tried to be robust against these attacks, but there’s frankly just not that much that can be done.
Wouldn’t it be nice if you didn’t have to trust the device at all, but rather an attacker would have to compromise *both* your hardware wallet and your computer? Well, we’ve had the tech to do this for many, many years! The fact that only two hardware wallets bothered to implement this boggles my mind. It’s impressive incompetence, bordering on maliciousness, honestly. nostr:note16748fqunfxq63y980gl7me3u7d6zklvg8tscg45fpfw2lhzpv05qw2l5y4
Any hardware wallet could have implemented anti-exfil signing at any point in the last 5 or more years, with minimal/no UX change. The fact that none bothered is sheer incompetence bordering on maliciousness.
They bothered to implement anti-exfil (provably random nonces). This means that a malicious firmware or even malicious hardware wallet can’t steal your coin! For every other hardware wallet, you’re blindly trusting Amazon/UPS/five factories in China/the webserver you got the firmware from/etc/etc. The idea that none of these parties have anyone working there who might want to go steal people’s coin is absurd, frankly.
Stop using hardware wallets that don’t take security seriously (sadly, all of them except Jade and BitBox). This is a novel construction, but the class of attacks is very old.
A laptop purchased in person, immediately installing Linux without ever connecting it to the Internet is a much better way to store coin than hardware wallets. Which, frankly, is just embarrassing incompetence for the hardware wallet industry.
It’s the “custodial” requirement here that gets you no answer. Ignore that and there’s a few Breez SDK wallets, some LDK-node ones coming soon, plus Mutiny, Phoenix, etc. custodial wallets aren’t legal without KYC most places in the world…
Nothing beats left-side LaGuardia approach on a clear day/night.
(This is a wide-angle lens, you’re really right over Manhattan) 
Final reaction: wow, Trump’s team really doesn’t understand bitcoin at all. So much for them being assisted by bitcoiners. nostr:note1e0e8g0myf5s8dygjsw56n9fgmgxp3gnhzewzkz0ragf8t4tuwftq4a34m2
I can never tell if this is just the pain of being a bitcoiner or if we’re just wrong…
Remember that there are likely to be many Bitcoin Whales in Nashville, making its prime target. Leave your keys at home. Assume your laptop will be backdoored if you leave it alone. Be aware.
He dropped out a long time after the assassination attempt (in political time) - after the RNC and getting covid (which may well have him quite sick right now). He also dropped out at basically the last possible minute before the (now-delayed) online delegate voting for the formal Democratic nomination starts. The pressure for Biden to drop out got its loudest late last week, right before he dropped out.
Sadly it’s on-chain or, in the future, BOLT 12. Some wallets support lnurl for this but it’s a bit spotty and don’t think it’s growing.
For those impacted by the Swan news, I’m sorry. Layoffs suck when you did nothing don’t.
But, Spiral is still hiring for LDK engineer(s) as well as the “wizard” role!
apply@spiral.xyz
You can vote write-in and vote literally “none of the above” (or anyone, my grandfather has recently taken to voting for his friend down the street).
Its the “selecting a custodian you trust” part that makes the UX impossible to build :(