-
@ Implausible Deniability
2025-04-17 12:55:33
Urgent for Blockstream Jade and Trezor 3 users:
Security researchers discover critical vulnerability (CVE-2025-27840) in ESP32 chip, used in several renowned bitcoin hardware wallets.
This vulnerability allows attackers to forge ECDSA signatures and make unauthorized transactions, according to Crypto Deep Tech.
Block stream Jade's exploit is through its Bluetooth and WiFi capability.
Trezor is a supply chain exploit, where malicious actors can steal keys before reaching the end user.
https://image.nostr.build/c0d9d493aba0363852aac1ddc0213dd0bda81d026eef87c486532717e9708418.jpg