Home Foren Ledger Wallet Ledger ist noch nie gehackt worden!

Ansicht von 6 Antwort-Themen
  • Autor
    Beiträge
    • 21. Juni 2023 um 00:08 Uhr #2510251
      root_s2yse8vt
      Administrator
      Up
      0
      Down
      ::

      Jedes Mal, wenn sich jemand über den Verlust seines Geldes beschwerte, sagten wir, dass er etwas mit seinem Seed falsch gemacht haben muss. Wir vertrauten Ledger, dass der Seed *unter keinen Umständen* das Gerät verlassen konnte. Nun, da wir wissen, dass dies nicht stimmt, wie können wir ausschließen, dass Ledger tatsächlich gehackt wurde?

      Viele Leute haben gefragt, ob die Exportfunktion bereits in früheren Firmwares implementiert war, aber (soweit ich weiß) hat Ledger noch nicht mit einer klaren Aussage geantwortet. Das ist nicht beruhigend!

    • 21. Juni 2023 um 00:08 Uhr #2510252
      Spartanarrow2023
      Gast
      Up
      0
      Down
      ::

      it will one day, and when that day comes… it will be EPIC. better be safe than sorry… i am out of Ledger!

    • 21. Juni 2023 um 00:08 Uhr #2510253
      [deleted]
      Gast
      Up
      0
      Down
      ::

      [deleted]

    • 21. Juni 2023 um 00:08 Uhr #2510254
      ourodial
      Gast
      Up
      0
      Down
      ::

      The only reason people have bought their product; is because they’ve LIED and told everyone that keys can’t be extracted under any circumstance.

      Ledger is a DEAD company unless they list every single firmware as open source that they’ve rolled out since day 1. There isn’t another alternative move for them to keep the trust in their company. That’s 100% clear now

    • 21. Juni 2023 um 00:08 Uhr #2510255
      indomitus1
      Gast
      Up
      0
      Down
      ::

      FTX, the 2nd largest CEX was solid and Celsius was innovative they said as Mashinsky was reputable and trustworthy. We all know how that ended and that’s just a couple of examples.

      A proactive rather than reactive approach is safer if you value your money

    • 21. Juni 2023 um 00:08 Uhr #2510256
      Avanchnzel
      Gast
      Up
      0
      Down
      ::

      NOTE: This is not to defend Ledger’s ability to create malicious firmware.

      ​

      Just because Ledger can create a malicious firmware doesn’t mean that anybody who’s *not* Ledger can successfully *hack* the device.

      That is exactly what Ledger meant when saying the device has never and can’t be hacked, i.e. the secure element is safe from *outside* attacks.

      So if people suddenly come out of the woodworks claiming that: “Ha! See my devices *was* hacked after all. Because look at how Ledger can make malicious firmware!” then that is still not relevant, unless you’re claiming that they installed a malicious firmware.

    • 21. Juni 2023 um 00:08 Uhr #2510257
      r_a_d_
      Gast
      Up
      0
      Down
      ::

      Unless you are saying that there might be a bug in the firmware or that there is a backdoor in the firmware, this is still true. The firmware did not allow you to expose your seed (before this update). Now it allows you to export your seed in an encrypted form if you confirm to do so on the device. The same way you need to confirm any transaction on the device.

      So you still need to confirm on the device to expose your key, but if someone has the power to do this without your consent, they could also issue all the transactions they want and empty your wallets without touching your seed.

      If instead you are saying that they could have the firmware do whatever they want, then that is also the case with all HW wallets, so I’m not sure what solutions there are for you if you deem this to be an unacceptable risk.

  • Autor
    Beiträge
Ansicht von 6 Antwort-Themen
  • Du musst angemeldet sein, um auf dieses Thema antworten zu können.