Breaking
March 14, 2025

Ledger finds security flaws in Trezor Safe 3 and Safe 5 models Jai Hamid | usagoldmines.com

Trezor’s latest hardware wallets, the Safe 3 and Safe 5, have some serious security issues, according to a report from Ledger that was released on March 12.

The report said that its security research team, Ledger Donjon, found that these devices had a ton of vulnerabilities in their microcontrollers that could allow hackers to gain remote access to user funds.

The flaws come despite Trezor’s upgrade to a two-chip design that includes an EAL6+ certified Secure Element. While the Secure Element protects PINs and private keys, Ledger’s report reveals that all cryptographic operations are still performed on the microcontroller, which is vulnerable to voltage glitching attacks.

If exploited, an attacker could extract cryptographic secrets, modify firmware, and bypass security checks, leaving user funds at risk.

Trezor’s new security design fails to protect critical operations

Trezor launched the Safe 3 in late 2023, followed by the Safe 5 in mid-2024, and both wallets introduced an upgraded two-chip design, in efforts to move away from the single-chip architecture used in older Trezor models.

The upgrade also added an Optiga Trust M Secure Element from Infineon, which will be a dedicated security chip to store PINs and cryptographic secrets.

According to Ledger’s findings, this Secure Element prevents access to sensitive data unless the correct PIN is entered. It also blocks hardware attacks like voltage glitching, which were previously used to extract seed phrases from models like Trezor One and Trezor T.

PCBs of two Trezor Safe 3, one running genuine software and the other running modified firmware | Source: Ledger

But despite these improvements, Ledger Donjon’s research shows that the main cryptographic functions—including transaction signing—still happen on the microcontroller, which remains a major security weakness.

The microcontroller used in the Safe 3 and Safe 5 is labeled TRZ32F429, which is actually a custom-packaged STM32F429 chip.

This chip has known vulnerabilities, specifically voltage glitching exploits that allow attackers to gain full read/write access to the flash memory.

Once an attacker modifies the firmware, they could manipulate entropy generation, which plays a key role in cryptographic security. This could lead to remote theft of private keys, giving hackers complete access to user funds.

Authentication system fails to verify microcontroller integrity

Trezor uses cryptographic authentication to verify its devices, but Ledger Donjon found that this system does not check the microcontroller’s firmware.

The Optiga Trust M Secure Element generates a public-private key pair during production, and Trezor signs the public key, embedding it into a certificate. When a user connects their wallet, Trezor Suite sends a random challenge that the device must sign using its private key. If the signature is valid, the device is considered authentic.

How the Optiga Trust M Secure Element works | Source: Ledger

But Ledger’s research shows that this process only verifies the Secure Element, not the microcontroller or its firmware.

Trezor attempted to link the Secure Element and microcontroller using a pre-shared secret, which is programmed into both chips during manufacturing. The Secure Element will only respond to signature requests if the microcontroller proves knowledge of this secret.

The problem? This pre-shared secret is stored in the microcontroller’s flash memory, which is vulnerable to voltage glitching attacks.

Ledger’s team was able to extract the secret, reprogram the chip, and bypass the authentication process entirely. This means an attacker could modify the firmware while still passing Trezor’s security checks.

Ledger’s report describes how they built a custom attack board, which allowed them to break out the TRZ32F429’s pads onto standard headers.

This setup lets them mount the microcontroller onto their attack system, extract the pre-shared secret, and reprogram the device without detection.

Once reprogrammed, the device would still appear legitimate when connected to Trezor Suite since the cryptographic attestation system remains unchanged.

This creates a dangerous situation, where compromised Trezor Safe 3 and Safe 5 wallets could be sold as genuine devices, while secretly running malicious firmware that steals user funds.

Firmware validation is bypassed, leaving users exposed

Trezor does include a firmware integrity check in Trezor Suite, but Ledger Donjon found a way to completely bypass this protection.

The firmware check works by sending a random challenge to the device, which then computes a cryptographic hash using both the challenge and its firmware. Trezor Suite verifies this hash against a database of genuine firmware versions.

At first glance, this method seems kind of effective—an attacker can’t just hardcode a fake hash because they wouldn’t know the random challenge in advance, so the device must compute the hash in real time, proving it’s running genuine firmware.

However, Ledger Donjon discovered a way to fully bypass this protection. Since the microcontroller handles this computation, an attacker can modify its firmware to fake a valid response.

Source: Ledger

By manipulating how the device calculates the hash, the attacker can make any firmware version appear authentic. This is a serious issue because it allows attackers to run modified software while still passing Trezor Suite’s verification checks.

As a result, a compromised Trezor Safe 3 or Safe 5 could still appear legitimate while secretly leaking private keys or altering transaction data.

Ledger’s report concludes that the only way to fully secure the Safe 3 and Safe 5 would be to replace the microcontroller with a more secure alternative. The Trezor Safe 5 does include a more modern microcontroller, the STM32U5, which has no publicly known fault injection attacks—at least for now.

But since it’s still a standard microcontroller, not a dedicated Secure Element, the risk remains that new attack methods could be discovered.

Trezor has already patched the vulnerabilities, but the underlying security concerns remain. Until the microcontroller itself is fully secured, users will have to trust Trezor’s software protections, which Ledger Donjon’s research has already proven can be bypassed.

Cryptopolitan Academy: Tired of market swings? Learn how DeFi can help you build steady passive income. Register Now

 

This articles is written by : Nermeen Nabil Khear Abdelmalak

All rights reserved to : USAGOLDMIES . www.usagoldmines.com

You can Enjoy surfing our website categories and read more content in many fields you may like .

Why USAGoldMines ?

USAGoldMines is a comprehensive website offering the latest in financial, crypto, and technical news. With specialized sections for each category, it provides readers with up-to-date market insights, investment trends, and technological advancements, making it a valuable resource for investors and enthusiasts in the fast-paced financial world.

Recent:

Crypto News | Why Is Ethereum (ETH) Falling Without Major Liquidations? ITB Breaks It Down Mandy Wi...

Crypto News | SIMD-228 Inflation Proposal Rejected as Solana Community Engages in Record-Breaking V...

Crypto News | Bitcoin’s rise turns 2017 theft into multimillion-pound scandal for UK officer Oluwape...

Bitcoin retakes $85,000 as stocks and crypto unexpectedly rally Jai Hamid | usagoldmines.com

Just how exposed is the Middle East to current global trade tensions? Jai Hamid | usagoldmines.com

Senator Lummis Reintroduces The Bitcoin Act To Fuel US BTC Reserve Aliyu Pokima | usagoldmines.com

Ripple SEC Deal Could Skyrocket XRP Price to $13 — Will Retail Traders be Priced Out? Arnold Kirimi ...

US Bankruptcy Court Grants 3AC Liquidators to Expand Claim Against FTX to $1.53B Sujha Sundararajan ...

Trump Family’s World Liberty Financial Concludes Token Sale, Raising $550 Million Ruholamin Haqshana...

Russia Uses Crypto to Bypass Sanctions in Oil Trade with China, India: Report Ruholamin Haqshanas | ...

Gemini Sets Guinness World Record with 1,000-Drone Bitcoin Logo Display Ruholamin Haqshanas | usagol...

Billionaire Tim Draper Says Bitcoin Will Hit $250K in 2025 – Here’s Why Arslan Butt | usagoldmines.c...

A Coinbase Win: US State of Vermont Drops Its Case Against the Exchange Sead Fadilpašić | usagoldmin...

Bitcoin Speculators Lose Over $100M in Six Weeks Amid Panic Selling Ruholamin Haqshanas | usagoldmin...

30% of Russian Banks Hesitant to Support CBDC Adoption: Survey Hassan Shittu | usagoldmines.com

Legacy Trading Card Game From SEGA Launches on Sui Sead Fadilpašić | usagoldmines.com

Crypto Password-Cracking Firm Unciphered in Turmoil Over Co-Founder’s Controversial Past Ruholamin H...

Crypto Perpetuals Trading Doubles to $58.5T in 2024 While Binance’s Market Share Declines 20% Hassan...

Solana Community Rejects SIMD-0228 in Historic Vote as Small Validators Sway Outcome Hassan Shittu |...

Hyperliquid Tightens Trading Rules After Brutal $4M Loss – What’s Next? Harvey Hunter | usagoldmines...

Hong Kong Blockchain Sector Surges 250% Since 2022: Report Veronika Rinecker | usagoldmines.com

Is a Solana ETF Coming Soon? CME Futures Signal Big Move for SOL Simon Chandler | usagoldmines.com

BlackRock Expected to File for Solana and XRP ETFs, Says ETF Store President Jimmy Aki | usagoldmine...

Uniswap Bleeds 20%—Is This Whale Behind The Drop? Christian Encila | usagoldmines.com

Crypto News | Bitcoin outperforms tech stocks as US market opens to sea of green Liam 'Akiba' Wright...

Sugarverse Raises $1M, Announces Sugar Match on Tezos L2 Victor | usagoldmines.com

SOL Price: Can Solana Hit $300? Analysts Predict 40x Surge communityspeaks | usagoldmines.com

US consumer sentiment hits 2-year low as inflation fears hit 32-year high Jai Hamid | usagoldmines.c...

Mutuum Finance (MUTM) Becomes Most Sought At Crypto Presale In 2025 Cryptopolitan Media | usagoldmin...

Crypto News | Fairspin Casino Unveils CopyStake, a New Automated Betting Feature blockchainnews | u...

Crypto News | BTC Price Maintains $80K After Favorable CPI Data, XRP to Get Commodity Status? (Your...

Crypto News | Solana governance sets new participation record outpacing past US presidential electio...

Crypto News | Gold breaks $3,000 for first time amid global uncertainty as Bitcoin trades sideways O...

Crypto.com Gets Limited License in Dubai for Derivatives Victor | usagoldmines.com

BlackRock will file for both Solana and XRP ETFs, Nate Geraci Florence Muchai | usagoldmines.com

Over 30% of Russian banks not ready to embrace CBDC, report finds Vignesh Karunanidhi | usagoldmines...

Bitcoin Faces Rejection At $84,000, But Analysts Show 2020 Similarities – Recovery Ahead? Rubmar Gar...

Crypto News | Pi Network Turns 6: Latest Developments, Milestones, and Future Plans Dimitar Dzhondz...

Crypto News | This Meme Coin Soars 162% After Coinbase Roadmap Addition Wayne Jones | usagoldmines....

Crypto News | Trump-backed DeFi project WLFI closes raise surpassing goal reaching $590 million Oluw...

Solana inflation reduction proposal fails despite strong community support Cryptopolitan News | usag...

Bitcoin’s Price at a Crossroads—Will It Break $86K or Drop to $64K Support? Samuel Edyme | usagoldmi...

Best AI Agent Coins to Buy as Investor Hype Remains Steady on AI Industry Krishi Chowdhary | usagold...

Crypto News | SEC Reportedly Considering Classifying XRP as a Commodity Wayne Jones | usagoldmines....

Crypto News | Russian oil firms use Bitcoin, Ethereum, USDT for cross-border payments with China and...

Trump Crypto Executive Order Sparks New Bill for U.S. Bitcoin Stockpile Elena R | usagoldmines.com

World Liberty Financial ($WLFI) Token Sale Ends, Raising $550M Victor | usagoldmines.com

Coinbase Suspends FLOKI, TURBO and GIGA in NY Tari | usagoldmines.com

Tesla turns to cheaper cars and White House support to revive dwindling business Hannah Collymore | ...

9 tokens bought by Trump-backed WLFI suffer a $124M loss Florence Muchai | usagoldmines.com

We’re in a technical correction, not a bear market, says BofA Jai Hamid | usagoldmines.com

Rep. Byron Donalds introduces bill to make Trump’s strategic Bitcoin reserve permanent Jai Hamid | u...

Russia bypassing US sanctions with cryptocurrencies in oil trade Collins J. Okoth | usagoldmines.com

Anthony Scaramucci Predicts Bitcoin’s Rocket Surge To $200,000 Before End Of Year Brenda Ngari | usa...

Expert’s Bold Prediction Puts Sui (SUI) At $20 And Mutuum Finance (MUTM) At $10 Before August 2025 C...

Crypto News | Recent Ripple v. SEC Lawsuit Updates, Interesting XRP Price Predictions, and More: Bi...

Crypto News | Vermont withdraws action against Coinbase, awaits SEC’s regulatory clarity Oluwapelumi...

Vitalik Buterin: Humans Essential for AI Decentralization Victor | usagoldmines.com

ZKSync discontinues its Ignite incentive program due to unfavorable market conditions Hristina Vasil...

Not ruling out recession: VP Vance says you can never predict the future Florence Muchai | usagoldmi...

SEC Considers Labeling XRP A Commodity As High-Profile Enforcement Case Against Ripple Nears Conclus...

Bitcoin In An Oversold Zone, Is a $100,000 Rebound Imminent? Aliyu Pokima | usagoldmines.com

Here Is When Wall Street Giant BlackRock Will Join Spot XRP ETF Race, According To Pundit Brenda Nga...

This Token’s Got Utility—and It’s Making Waves! Could It Be the Next Blockchain Beast? Cryptopolitan...

Bitcoin & Altcoin Volume Fades—Investor Exhaustion Setting In? Keshav Verma | usagoldmines.com

Russia Adopts Bitcoin and Ethereum for Oil Trade with BRICS Nations to Evade Sanctions Nidhi Kolhapu...

RedotPay raises $40M to expand crypto payments Nellius Irene | usagoldmines.com

Whale dumps HYPE for USDC losing $1.8M, other whales go long on ETH and HYPE Florence Muchai | usago...

China sees US trade wars as a joke, as it pushes key allies away Jai Hamid | usagoldmines.com

Cardano (ADA) Faces Sell-Offs As Holders Shift Focus To This $0.020 Altcoin Cryptopolitan Media | us...

Bitcoin Needs Weekly Close Above This Level To Confirm Market Bottom, Analyst Says Ash Tiwari | usag...

Crypto News | Bitcoin Price Analysis: BTC Risks Falling to $75K if This Resistance Breaks CryptoViz...

Crypto News | Crypto Price Analysis March-14: ETH, XRP, ADA, SOL, and HYPE Duo Nine | usagoldmines....

Crypto News | BlackRock’s BUIDL fund breaks $1 billion in tokenized RWAs, up 56% in a month Liam 'Ak...

BlackRock Eyes XRP ETF Filing After SEC Lawsuit Conclusion Anjali Belgaumkar | usagoldmines.com

Russia Uses Bitcoin, USDT for Oil Deals with China, India Victor | usagoldmines.com

Lawmaker Urges Treasury to Block Trump’s Bitcoin Reserve Victor | usagoldmines.com

Three Arrows Capital gets U.S. bankruptcy court authorization to increase $1.5B claim against FTX Co...

World Liberty Financial (WLFI) completes its token sale, raising $500 million in total financing Col...

Ark Invest buys 997 BTC worth $80M via Coinbase as Bitcoin strategy expands Nellius Irene | usagoldm...

Elon Musk, DOGE, Obama and Democrats have one thing in common – MAGA Florence Muchai | usagoldmines....

Solana Price Could Drop 29% From Here, Bloomberg Experts Names This Trending Altcoin The Dogecoin Of...

Bitcoin’s MVRV Ratio Nears Key Level—Will This Trigger a Major Reversal? Samuel Edyme | usagoldmines...

Crypto News | Will Crypto Markets React to $3B Bitcoin Options Expiring Today?  Martin Young | usag...

Crypto News | Will Trump’s ‘Short-Term Pain’ Plan Result in Long-Term Gains for Crypto? Martin Youn...

Crypto News: Trump Administration Set to Focus on U.S.-Based Altcoins, Expert Reveals Bullish Outloo...

Pump.fun turns to DMs and group messaging features after failed livestream experiment Hannah Collymo...

XRP Primed for a Massive Breakout—What It Means for PEPE & DURAG! Cryptopolitan Media | usagoldm...

Crypto Pundit Claims XRP Will Hit $1,000 – Here’s The 10 Reasons Why Jake Simmons | usagoldmines.com

Crypto News Today, 14th March : Pi Network Price , XRP News, Bitcoin & Ethereum Price Today Qadi...

BOJ to assess economic risks from U.S. tariffs while keeping rates steady Noor Bazmi | usagoldmines....

New poll data suggests Americans are less optimistic about Trump’s policies Collins J. Okoth | usago...

Cardano Price Testing KEY Support Level – Massive Crash Coming? Joel Frank | usagoldmines.com

Can XRP Finally Break $10? Ripple’s Legal Battle Nears an End  Michael Davis | usagoldmines.com

‘Upbit Dependence Could Derail New K Bank IPO Bid’ – Report Tim Alper | usagoldmines.com

Treasury Urged to Dismiss Trump’s Proposal for a Strategic Bitcoin Reserve Shalini Nagarajan | usago...

RedotPay Raises $40M to Build Borderless Payment Ecosystem Bridging Crypto and Fiat Ruholamin Haqsha...

Ethereum’s Volatility Makes FXGuys the Smarter Bet for Long-Term Investors Cryptopolitan Media | usa...

ECB President Christine Lagarde says Trump will trigger a global recession Jai Hamid | usagoldmines....

Crypto Analysts Believe This New Crypto Could Become Bigger Than Solana, XRP and BNB Cryptopolitan M...

Leave a Reply