The hidden risk of updatable firmware
Crypto security is at risk due to the potential vulnerabilities in firmware updates for hardware wallets. While these updates aim to enhance security, they can also introduce backdoors that hackers or malicious entities could exploit. Users face a dilemma: update for security or risk outdated software with unknown vulnerabilities. Past incidents, such as the 2018 Ledger vulnerability and the 2023 OneKey exploit, highlight the dangers of firmware manipulation. Some wallets, like Tangem, use fixed firmware to eliminate update risks, but this means vulnerabilities cannot be patched. True security in crypto requires users to take control, research developers, and avoid blind trust in update processes. Security should prioritize control over convenience.
