Breaking
March 14, 2025

Ledger finds security flaws in Trezor Safe 3 and Safe 5 models Jai Hamid | usagoldmines.com

Trezor’s latest hardware wallets, the Safe 3 and Safe 5, have some serious security issues, according to a report from Ledger that was released on March 12.

The report said that its security research team, Ledger Donjon, found that these devices had a ton of vulnerabilities in their microcontrollers that could allow hackers to gain remote access to user funds.

The flaws come despite Trezor’s upgrade to a two-chip design that includes an EAL6+ certified Secure Element. While the Secure Element protects PINs and private keys, Ledger’s report reveals that all cryptographic operations are still performed on the microcontroller, which is vulnerable to voltage glitching attacks.

If exploited, an attacker could extract cryptographic secrets, modify firmware, and bypass security checks, leaving user funds at risk.

Trezor’s new security design fails to protect critical operations

Trezor launched the Safe 3 in late 2023, followed by the Safe 5 in mid-2024, and both wallets introduced an upgraded two-chip design, in efforts to move away from the single-chip architecture used in older Trezor models.

The upgrade also added an Optiga Trust M Secure Element from Infineon, which will be a dedicated security chip to store PINs and cryptographic secrets.

According to Ledger’s findings, this Secure Element prevents access to sensitive data unless the correct PIN is entered. It also blocks hardware attacks like voltage glitching, which were previously used to extract seed phrases from models like Trezor One and Trezor T.

PCBs of two Trezor Safe 3, one running genuine software and the other running modified firmware | Source: Ledger

But despite these improvements, Ledger Donjon’s research shows that the main cryptographic functions—including transaction signing—still happen on the microcontroller, which remains a major security weakness.

The microcontroller used in the Safe 3 and Safe 5 is labeled TRZ32F429, which is actually a custom-packaged STM32F429 chip.

This chip has known vulnerabilities, specifically voltage glitching exploits that allow attackers to gain full read/write access to the flash memory.

Once an attacker modifies the firmware, they could manipulate entropy generation, which plays a key role in cryptographic security. This could lead to remote theft of private keys, giving hackers complete access to user funds.

Authentication system fails to verify microcontroller integrity

Trezor uses cryptographic authentication to verify its devices, but Ledger Donjon found that this system does not check the microcontroller’s firmware.

The Optiga Trust M Secure Element generates a public-private key pair during production, and Trezor signs the public key, embedding it into a certificate. When a user connects their wallet, Trezor Suite sends a random challenge that the device must sign using its private key. If the signature is valid, the device is considered authentic.

How the Optiga Trust M Secure Element works | Source: Ledger

But Ledger’s research shows that this process only verifies the Secure Element, not the microcontroller or its firmware.

Trezor attempted to link the Secure Element and microcontroller using a pre-shared secret, which is programmed into both chips during manufacturing. The Secure Element will only respond to signature requests if the microcontroller proves knowledge of this secret.

The problem? This pre-shared secret is stored in the microcontroller’s flash memory, which is vulnerable to voltage glitching attacks.

Ledger’s team was able to extract the secret, reprogram the chip, and bypass the authentication process entirely. This means an attacker could modify the firmware while still passing Trezor’s security checks.

Ledger’s report describes how they built a custom attack board, which allowed them to break out the TRZ32F429’s pads onto standard headers.

This setup lets them mount the microcontroller onto their attack system, extract the pre-shared secret, and reprogram the device without detection.

Once reprogrammed, the device would still appear legitimate when connected to Trezor Suite since the cryptographic attestation system remains unchanged.

This creates a dangerous situation, where compromised Trezor Safe 3 and Safe 5 wallets could be sold as genuine devices, while secretly running malicious firmware that steals user funds.

Firmware validation is bypassed, leaving users exposed

Trezor does include a firmware integrity check in Trezor Suite, but Ledger Donjon found a way to completely bypass this protection.

The firmware check works by sending a random challenge to the device, which then computes a cryptographic hash using both the challenge and its firmware. Trezor Suite verifies this hash against a database of genuine firmware versions.

At first glance, this method seems kind of effective—an attacker can’t just hardcode a fake hash because they wouldn’t know the random challenge in advance, so the device must compute the hash in real time, proving it’s running genuine firmware.

However, Ledger Donjon discovered a way to fully bypass this protection. Since the microcontroller handles this computation, an attacker can modify its firmware to fake a valid response.

Source: Ledger

By manipulating how the device calculates the hash, the attacker can make any firmware version appear authentic. This is a serious issue because it allows attackers to run modified software while still passing Trezor Suite’s verification checks.

As a result, a compromised Trezor Safe 3 or Safe 5 could still appear legitimate while secretly leaking private keys or altering transaction data.

Ledger’s report concludes that the only way to fully secure the Safe 3 and Safe 5 would be to replace the microcontroller with a more secure alternative. The Trezor Safe 5 does include a more modern microcontroller, the STM32U5, which has no publicly known fault injection attacks—at least for now.

But since it’s still a standard microcontroller, not a dedicated Secure Element, the risk remains that new attack methods could be discovered.

Trezor has already patched the vulnerabilities, but the underlying security concerns remain. Until the microcontroller itself is fully secured, users will have to trust Trezor’s software protections, which Ledger Donjon’s research has already proven can be bypassed.

Cryptopolitan Academy: Tired of market swings? Learn how DeFi can help you build steady passive income. Register Now

 

This articles is written by : Nermeen Nabil Khear Abdelmalak

All rights reserved to : USAGOLDMIES . www.usagoldmines.com

You can Enjoy surfing our website categories and read more content in many fields you may like .

Why USAGoldMines ?

USAGoldMines is a comprehensive website offering the latest in financial, crypto, and technical news. With specialized sections for each category, it provides readers with up-to-date market insights, investment trends, and technological advancements, making it a valuable resource for investors and enthusiasts in the fast-paced financial world.

Recent:

Crypto News | Recent Ripple v. SEC Lawsuit Updates, Interesting XRP Price Predictions, and More: Bi...

Crypto News | Vermont withdraws action against Coinbase, awaits SEC’s regulatory clarity Oluwapelumi...

Vitalik Buterin: Humans Essential for AI Decentralization Victor | usagoldmines.com

ZKSync discontinues its Ignite incentive program due to unfavorable market conditions Hristina Vasil...

Not ruling out recession: VP Vance says you can never predict the future Florence Muchai | usagoldmi...

SEC Considers Labeling XRP A Commodity As High-Profile Enforcement Case Against Ripple Nears Conclus...

Bitcoin In An Oversold Zone, Is a $100,000 Rebound Imminent? Aliyu Pokima | usagoldmines.com

Here Is When Wall Street Giant BlackRock Will Join Spot XRP ETF Race, According To Pundit Brenda Nga...

This Token’s Got Utility—and It’s Making Waves! Could It Be the Next Blockchain Beast? Cryptopolitan...

Bitcoin & Altcoin Volume Fades—Investor Exhaustion Setting In? Keshav Verma | usagoldmines.com

Russia Adopts Bitcoin and Ethereum for Oil Trade with BRICS Nations to Evade Sanctions Nidhi Kolhapu...

RedotPay raises $40M to expand crypto payments Nellius Irene | usagoldmines.com

Whale dumps HYPE for USDC losing $1.8M, other whales go long on ETH and HYPE Florence Muchai | usago...

China sees US trade wars as a joke, as it pushes key allies away Jai Hamid | usagoldmines.com

Cardano (ADA) Faces Sell-Offs As Holders Shift Focus To This $0.020 Altcoin Cryptopolitan Media | us...

Bitcoin Needs Weekly Close Above This Level To Confirm Market Bottom, Analyst Says Ash Tiwari | usag...

Crypto News | Bitcoin Price Analysis: BTC Risks Falling to $75K if This Resistance Breaks CryptoViz...

Crypto News | Crypto Price Analysis March-14: ETH, XRP, ADA, SOL, and HYPE Duo Nine | usagoldmines....

Crypto News | BlackRock’s BUIDL fund breaks $1 billion in tokenized RWAs, up 56% in a month Liam 'Ak...

BlackRock Eyes XRP ETF Filing After SEC Lawsuit Conclusion Anjali Belgaumkar | usagoldmines.com

Russia Uses Bitcoin, USDT for Oil Deals with China, India Victor | usagoldmines.com

Lawmaker Urges Treasury to Block Trump’s Bitcoin Reserve Victor | usagoldmines.com

Three Arrows Capital gets U.S. bankruptcy court authorization to increase $1.5B claim against FTX Co...

World Liberty Financial (WLFI) completes its token sale, raising $500 million in total financing Col...

Ark Invest buys 997 BTC worth $80M via Coinbase as Bitcoin strategy expands Nellius Irene | usagoldm...

Elon Musk, DOGE, Obama and Democrats have one thing in common – MAGA Florence Muchai | usagoldmines....

Solana Price Could Drop 29% From Here, Bloomberg Experts Names This Trending Altcoin The Dogecoin Of...

Bitcoin’s MVRV Ratio Nears Key Level—Will This Trigger a Major Reversal? Samuel Edyme | usagoldmines...

Crypto News | Will Crypto Markets React to $3B Bitcoin Options Expiring Today?  Martin Young | usag...

Crypto News | Will Trump’s ‘Short-Term Pain’ Plan Result in Long-Term Gains for Crypto? Martin Youn...

Crypto News: Trump Administration Set to Focus on U.S.-Based Altcoins, Expert Reveals Bullish Outloo...

Pump.fun turns to DMs and group messaging features after failed livestream experiment Hannah Collymo...

XRP Primed for a Massive Breakout—What It Means for PEPE & DURAG! Cryptopolitan Media | usagoldm...

Crypto Pundit Claims XRP Will Hit $1,000 – Here’s The 10 Reasons Why Jake Simmons | usagoldmines.com

Crypto News Today, 14th March : Pi Network Price , XRP News, Bitcoin & Ethereum Price Today Qadi...

BOJ to assess economic risks from U.S. tariffs while keeping rates steady Noor Bazmi | usagoldmines....

New poll data suggests Americans are less optimistic about Trump’s policies Collins J. Okoth | usago...

Cardano Price Testing KEY Support Level – Massive Crash Coming? Joel Frank | usagoldmines.com

Can XRP Finally Break $10? Ripple’s Legal Battle Nears an End  Michael Davis | usagoldmines.com

‘Upbit Dependence Could Derail New K Bank IPO Bid’ – Report Tim Alper | usagoldmines.com

Treasury Urged to Dismiss Trump’s Proposal for a Strategic Bitcoin Reserve Shalini Nagarajan | usago...

RedotPay Raises $40M to Build Borderless Payment Ecosystem Bridging Crypto and Fiat Ruholamin Haqsha...

Ethereum’s Volatility Makes FXGuys the Smarter Bet for Long-Term Investors Cryptopolitan Media | usa...

ECB President Christine Lagarde says Trump will trigger a global recession Jai Hamid | usagoldmines....

Crypto Analysts Believe This New Crypto Could Become Bigger Than Solana, XRP and BNB Cryptopolitan M...

OrbAI: The World’s First AI Aggregator Surges Past $1M in Presale – A Game-Changer in AI Innovation ...

Bitcoin And S&P Decline Together, But Data Predicts A Turnaround Christian Encila | usagoldmines...

Crypto News | Analyst Sees Hyperliquid’s $4M Loss as a Growth Opportunity for DeFi Wayne Jones | us...

Ripple Lawsuit News: SEC to Decide if XRP Deserves Same Treatment as Ethereum Anjali Belgaumkar | u...

US Treasury meets with crypto execs to discuss custody of the strategic Bitcoin reserve Jai Hamid | ...

Gold reaches new high amid Trump’s tariff fears and weak inflation report Noor Bazmi | usagoldmines....

The Market Is Down, but the Next 100x Gems Are Emerging — XYZVerse, Chainlink, and Cardano Cryptopol...

XRP Price Hints At Symmetrical Triangle, But A Crash Could Come Before The Surge Scott Matherson | u...

Cardano (ADA) Struggle Persists—Is a Rebound Still Possible? Aayush Jindal | usagoldmines.com

XRP Price Builds Base—Short-Term Rally May Be Brewing Aayush Jindal | usagoldmines.com

XRP News: New Proposal Seeks SEC Settlement with Ripple by Classifying XRP as a Payment Network Anj...

China will benefit from US trade wars according to EU’s top diplomat Noor Bazmi | usagoldmines.com

Bitcoin Price Steadies—Is a Meaningful Bounce on the Horizon? Aayush Jindal | usagoldmines.com

Ethereum Price Consolidates and Eyes Recovery—Is a Bounce Incoming? Aayush Jindal | usagoldmines.com

Pi Coin Price Prediction Today: What to Expect on Pi Day and Possible Binance Listing Anjali Belgau...

DOGE email reveals IRS layoff plans as Trump orders federal job cuts Nellius Irene | usagoldmines.co...

Why We Could See Mutuum Finance (MUTM) At $3 And Solana (SOL) At $870 At The End Of This Bull Run Cr...

Is XRP About To Shock The Market? Analyst Says $110 Is Possible Christian Encila | usagoldmines.com

Crypto News | Deep liquidity cushioned Bitcoin’s price during March volatility Andjela Radmilac | us...

XRP Price Prediction For March 14 Anjali Belgaumkar | usagoldmines.com

DEX Aggregator 1inch Expands to Linea, Using Zk-Rollups for Trading Tanzeel Akhtar | usagoldmines.co...

Prosecutors Find Illegal Crypto Mining Farm in Siberian Orphanage Tim Alper | usagoldmines.com

Trump Family’s Reported Binance.US Talks Draw Scrutiny from Elizabeth Warren Julia Smith | usagoldmi...

Bitcoin Price Rebounds – But Is a Crash to $73K or a Rally to $90K Next?  Arslan Butt | usagoldmines...

XRP Bulls Struggle To Break Key Resistance At $2.2546: What’s Next? Godspower Owie | usagoldmines.co...

Crypto News | Financial advisers, wirehouses set to fuel next wave of Bitcoin ETF adoption Gino Mato...

Federal judge instructs Trump administration to reinstate fired workers in 6 federal agencies Shumma...

‘Uncertain times’ Provide Support for Bitcoin, Rate Cut in June May Boost Price Troy Watson | usagol...

Crypto News | Bolivia turns to crypto for fuel trade amid US dollar shortage Assad Jafri | usagoldmi...

Circle moves to bring Hashnote Tokenized Fund under Bermuda oversight Brenda Kanana | usagoldmines.c...

Europeans reject the digital euro—Is the ECB fighting a losing battle? Nellius Irene | usagoldmines....

U.S. Senate Banking Committee Approves GENIUS Act Stablecoin Bill Hassan Shittu | usagoldmines.com

Mercado Bitcoin, Polygon Labs to Expand Tokenized Real-World Assets in Latin America Veronika Rineck...

Cardano Price Could Be Set For 100% Rally As This Bullish Triangle Has Formed On The Daily Timeframe...

Crypto News | MGX Invests $2B in Binance in Historic Crypto Funding Deal Wayne Jones | usagoldmines...

Aave proposes Horizon to enhance institutional adoption of DeFi Cryptopolitan News | usagoldmines.co...

AML Bitcoin creator Rowland Andrade found guilty of fraud and money laundering Derek H Andersen | us...

Pepe Coin (PEPE) And Viral $0.020 Token: Your Recipe For Significant Growth in 2025 Cryptopolitan Me...

Dogecoin Network Activity Surges 47% In A Month – What’s Next for DOGE? Sebastian Villafuerte | usag...

Crypto News | Bitcoin outlook strengthens as USDT market cap expands and indicators enter oversold z...

CZ bashes mainstream media for making up stories about him and Binance Jai Hamid | usagoldmines.com

Circle to Bring Hashnote Tokenized Money Market Fund Under Bermuda’s Regulatory Oversight Hassan Shi...

CZ Rejects WSJ Report of Binance US Deal Amid Pardon Speculation Hongji Feng | usagoldmines.com

Trump Adds Cardano (ADA) to U.S. Crypto Reserve, Yet Investors Are Rushing to This Altcoin With 100x...

Crypto News | Somnia Announces 14 new partnerships with dApps Across DeFi, Gaming, AI, and Metavers...

Crypto News | SuperScale Case Study Highlights Aethir’s Impact on Gaming User Acquisition Chainwire...

Crypto News | Ripple Secures DFSA License to Offer Regulated Crypto Payments in UAE Wayne Jones | u...

Crypto News | PayX: The Future of Institutional Crypto Payments in a Rapidly Evolving Market blockc...

Crypto News | SEC reportedly weighing XRP’s commodity status amid Ripple settlement negotiations Gin...

Crypto News | Ethereum devs launch new testnet to finish Pectra upgrade amid struggles Assad Jafri |...

U.S. Senate Banking Committee Advances Stablecoin Bill with Bipartisan Support; Full Senate Vote Nex...

Bitcoin decouples from gold as the precious metal trades at new all-time highs Hristina Vasileva | u...

Solana Whale Who Bought SOL At $1 Bets Big On This DeFi Token For 11,000% Upside Cryptopolitan Media...

Bitcoin Bottom Confirmed? Data Shows 87.5% Chance The Worst Is Over Jake Simmons | usagoldmines.com

Crypto News | Crypto Market Faces More Trouble as Traders See Few Signs of Recovery Chayanika Deka ...

Leave a Reply