Breaking
March 15, 2025

Ledger finds security flaws in Trezor Safe 3 and Safe 5 models Jai Hamid | usagoldmines.com

Trezor’s latest hardware wallets, the Safe 3 and Safe 5, have some serious security issues, according to a report from Ledger that was released on March 12.

The report said that its security research team, Ledger Donjon, found that these devices had a ton of vulnerabilities in their microcontrollers that could allow hackers to gain remote access to user funds.

The flaws come despite Trezor’s upgrade to a two-chip design that includes an EAL6+ certified Secure Element. While the Secure Element protects PINs and private keys, Ledger’s report reveals that all cryptographic operations are still performed on the microcontroller, which is vulnerable to voltage glitching attacks.

If exploited, an attacker could extract cryptographic secrets, modify firmware, and bypass security checks, leaving user funds at risk.

Trezor’s new security design fails to protect critical operations

Trezor launched the Safe 3 in late 2023, followed by the Safe 5 in mid-2024, and both wallets introduced an upgraded two-chip design, in efforts to move away from the single-chip architecture used in older Trezor models.

The upgrade also added an Optiga Trust M Secure Element from Infineon, which will be a dedicated security chip to store PINs and cryptographic secrets.

According to Ledger’s findings, this Secure Element prevents access to sensitive data unless the correct PIN is entered. It also blocks hardware attacks like voltage glitching, which were previously used to extract seed phrases from models like Trezor One and Trezor T.

PCBs of two Trezor Safe 3, one running genuine software and the other running modified firmware | Source: Ledger

But despite these improvements, Ledger Donjon’s research shows that the main cryptographic functions—including transaction signing—still happen on the microcontroller, which remains a major security weakness.

The microcontroller used in the Safe 3 and Safe 5 is labeled TRZ32F429, which is actually a custom-packaged STM32F429 chip.

This chip has known vulnerabilities, specifically voltage glitching exploits that allow attackers to gain full read/write access to the flash memory.

Once an attacker modifies the firmware, they could manipulate entropy generation, which plays a key role in cryptographic security. This could lead to remote theft of private keys, giving hackers complete access to user funds.

Authentication system fails to verify microcontroller integrity

Trezor uses cryptographic authentication to verify its devices, but Ledger Donjon found that this system does not check the microcontroller’s firmware.

The Optiga Trust M Secure Element generates a public-private key pair during production, and Trezor signs the public key, embedding it into a certificate. When a user connects their wallet, Trezor Suite sends a random challenge that the device must sign using its private key. If the signature is valid, the device is considered authentic.

How the Optiga Trust M Secure Element works | Source: Ledger

But Ledger’s research shows that this process only verifies the Secure Element, not the microcontroller or its firmware.

Trezor attempted to link the Secure Element and microcontroller using a pre-shared secret, which is programmed into both chips during manufacturing. The Secure Element will only respond to signature requests if the microcontroller proves knowledge of this secret.

The problem? This pre-shared secret is stored in the microcontroller’s flash memory, which is vulnerable to voltage glitching attacks.

Ledger’s team was able to extract the secret, reprogram the chip, and bypass the authentication process entirely. This means an attacker could modify the firmware while still passing Trezor’s security checks.

Ledger’s report describes how they built a custom attack board, which allowed them to break out the TRZ32F429’s pads onto standard headers.

This setup lets them mount the microcontroller onto their attack system, extract the pre-shared secret, and reprogram the device without detection.

Once reprogrammed, the device would still appear legitimate when connected to Trezor Suite since the cryptographic attestation system remains unchanged.

This creates a dangerous situation, where compromised Trezor Safe 3 and Safe 5 wallets could be sold as genuine devices, while secretly running malicious firmware that steals user funds.

Firmware validation is bypassed, leaving users exposed

Trezor does include a firmware integrity check in Trezor Suite, but Ledger Donjon found a way to completely bypass this protection.

The firmware check works by sending a random challenge to the device, which then computes a cryptographic hash using both the challenge and its firmware. Trezor Suite verifies this hash against a database of genuine firmware versions.

At first glance, this method seems kind of effective—an attacker can’t just hardcode a fake hash because they wouldn’t know the random challenge in advance, so the device must compute the hash in real time, proving it’s running genuine firmware.

However, Ledger Donjon discovered a way to fully bypass this protection. Since the microcontroller handles this computation, an attacker can modify its firmware to fake a valid response.

Source: Ledger

By manipulating how the device calculates the hash, the attacker can make any firmware version appear authentic. This is a serious issue because it allows attackers to run modified software while still passing Trezor Suite’s verification checks.

As a result, a compromised Trezor Safe 3 or Safe 5 could still appear legitimate while secretly leaking private keys or altering transaction data.

Ledger’s report concludes that the only way to fully secure the Safe 3 and Safe 5 would be to replace the microcontroller with a more secure alternative. The Trezor Safe 5 does include a more modern microcontroller, the STM32U5, which has no publicly known fault injection attacks—at least for now.

But since it’s still a standard microcontroller, not a dedicated Secure Element, the risk remains that new attack methods could be discovered.

Trezor has already patched the vulnerabilities, but the underlying security concerns remain. Until the microcontroller itself is fully secured, users will have to trust Trezor’s software protections, which Ledger Donjon’s research has already proven can be bypassed.

Cryptopolitan Academy: Tired of market swings? Learn how DeFi can help you build steady passive income. Register Now

 

This articles is written by : Nermeen Nabil Khear Abdelmalak

All rights reserved to : USAGOLDMIES . www.usagoldmines.com

You can Enjoy surfing our website categories and read more content in many fields you may like .

Why USAGoldMines ?

USAGoldMines is a comprehensive website offering the latest in financial, crypto, and technical news. With specialized sections for each category, it provides readers with up-to-date market insights, investment trends, and technological advancements, making it a valuable resource for investors and enthusiasts in the fast-paced financial world.

Recent:

Crypto News | VanEck files S-1 application to launch spot AVAX ETF Assad Jafri | usagoldmines.com

Ethereum Consolidates Since ‘The Big Dump’ – Local Trend Reversal Or Continuation? Sebastian Villafu...

Crypto password recovery firm Unciphered in turmoil after co-founder’s hidden past emerges Nellius I...

Weekly Crypto Regulation News Roundup: GENIUS Act, Trump’s Crypto Reserve, Binance Lands $2B Investm...

California Man John Khuu Sentenced to Over 7 Years for Crypto Money Laundering Scheme Hongji Feng | ...

Crypto Influencer T.J. Stone Sentenced to 45 Months for Fraud Tanzeel Akhtar | usagoldmines.com

Hayden Davis Faces Interpol Alert For Role In LIBRA Memecoin Ronaldo Marquez | usagoldmines.com

Crypto News | CZ Denies Trump-Binance Deal Allegations, Calls WSJ Report Misleading Wayne Jones | u...

Crypto News | Excessive fundraising weakens VC confidence in crypto startups despite regulatory impr...

Analytics tokens are the liveliest narrative in Q1 Hristina Vasileva | usagoldmines.com

Here Is When You Should Expect Cardano To Hit $2, XRP Price To Reach $10, And Mutuum Finance To Hit ...

Stablecoins Supply Up By $20 Billion – The Key To Bitcoin’s Next Move? Christian Encila | usagoldmin...

Crypto News | Argentina introduces new regulatory framework for stringent crypto oversight Assad Jaf...

David Sacks dumped $200M in crypto before taking White House role Jai Hamid | usagoldmines.com

Ethereum Price Recovers, But Chart Suggests Slump to $1,500 Coming Joel Frank | usagoldmines.com

Early Solana (SOL) and Cardano (ADA) Investors Are Shifting Their Focus; Could this $0.02 Presale Sp...

Crypto News | Trump-Backed Crypto Project WLFI Closes Token Sale After Raising $590 Million Chayani...

Crypto.com acquires regulatory license to offer derivatives in the United Arab Emirates Collins J. O...

Top Analyst Puts Cardano (ADA) Price At $5 By End Of Q3 2025; This ADA Rival Will Also Soar High Cry...

Global M2 Tightens Grip On Bitcoin—What’s Next? Jake Simmons | usagoldmines.com

Crypto News | Solaxy Presale Races Past $26M as Analyst Expects it to Pump After Launch Felix Molle...

Crypto News | BEST Token Presale Hits $11M Milestone – What is Next for Best Wallet? Felix Mollen |...

Crypto News | Good News for XRP? This Key Indicator Just Hit an All-Time High Dimitar Dzhondzhorov ...

Crypto News | Democrat lawmaker calls on Treasury to abandon Trump’s Bitcoin reserve plans Assad Jaf...

Michael Saylor outsmarts Wall Street as his Bitcoin empire keeps expanding Jai Hamid | usagoldmines....

California man sentenced to over seven years in federal prison for crypto laundering scheme Collins ...

Ethereum (ETH) Price To Fall Amidst Widespread Sell-Offs, Pundits Guarantee Higher Returns With This...

Why Ripple Investors Are Jumping Ship to Lightchain AI to Outsmart Market Mayhem Cryptopolitan Media...

Ethereum Could Be Mirroring Bitcoin’s 2018-2021 Cycle Amid Record Selling Scott Matherson | usagoldm...

Crypto News | Key Shiba Inu Metric Skyrockets by 2,000%: SHIB Rally Incoming? Dimitar Dzhondzhorov ...

Crypto News | Memereum Surpasses $2M in Presale, Showcases Blockchain Insurance, as Ethereum Holds ...

Crypto News | These Large Cap Altcoins Are Rebounding Following the Crash, According to Santiment M...

Crypto News | Tether to benefit greatly from current US stablecoin regulation Gino Matos | usagoldmi...

Trump’s crypto reserve plan draws financial and ethical criticism Florence Muchai | usagoldmines.com

XRP nears commodity status as ruling and utility shape SEC talks Nellius Irene | usagoldmines.com

Pi Day is Here – Will Pi Network Price Explode or Keep Crashing? Simon Chandler | usagoldmines.com

Brazil to Explore Blockchain for BRICS Cross-Border Trade: Report Jimmy Aki | usagoldmines.com

Can Ripple’s Dubai License Send XRP Soaring to $10? Alejandro Arrieche | usagoldmines.com

The Altcoin Market is About to Rally Massively, This Hidden Gem Could Soon Make You Rich Cryptopolit...

Crypto News | Three Arrows Capital wins court approval to expand FTX claim to $1.53B Oluwapelumi Ade...

Crypto News | REX introduces BMAX ETF for Bitcoin-backed corporate bond access Oluwapelumi Adejumo |...

BinoFi (BINO): Ready to Rival Solana (SOL)’s Epic Run? This $0.02 Presale Token Has Investors Going ...

Top Dogecoin Trader That Called 35,000% Rally In 2021 Bets Big On This $0.02 Ethereum Token As 26,26...

Crypto Faces Uncertain Future As Trump’s ‘Short-Term Pain’ Plan Unfolds Jake Simmons | usagoldmines....

Crypto News | Why Is Ethereum (ETH) Falling Without Major Liquidations? ITB Breaks It Down Mandy Wi...

Crypto News | SIMD-228 Inflation Proposal Rejected as Solana Community Engages in Record-Breaking V...

Crypto News | Bitcoin’s rise turns 2017 theft into multimillion-pound scandal for UK officer Oluwape...

Bitcoin retakes $85,000 as stocks and crypto unexpectedly rally Jai Hamid | usagoldmines.com

Just how exposed is the Middle East to current global trade tensions? Jai Hamid | usagoldmines.com

Senator Lummis Reintroduces The Bitcoin Act To Fuel US BTC Reserve Aliyu Pokima | usagoldmines.com

Ripple SEC Deal Could Skyrocket XRP Price to $13 — Will Retail Traders be Priced Out? Arnold Kirimi ...

US Bankruptcy Court Grants 3AC Liquidators to Expand Claim Against FTX to $1.53B Sujha Sundararajan ...

Trump Family’s World Liberty Financial Concludes Token Sale, Raising $550 Million Ruholamin Haqshana...

Russia Uses Crypto to Bypass Sanctions in Oil Trade with China, India: Report Ruholamin Haqshanas | ...

Gemini Sets Guinness World Record with 1,000-Drone Bitcoin Logo Display Ruholamin Haqshanas | usagol...

Billionaire Tim Draper Says Bitcoin Will Hit $250K in 2025 – Here’s Why Arslan Butt | usagoldmines.c...

A Coinbase Win: US State of Vermont Drops Its Case Against the Exchange Sead Fadilpašić | usagoldmin...

Bitcoin Speculators Lose Over $100M in Six Weeks Amid Panic Selling Ruholamin Haqshanas | usagoldmin...

30% of Russian Banks Hesitant to Support CBDC Adoption: Survey Hassan Shittu | usagoldmines.com

Legacy Trading Card Game From SEGA Launches on Sui Sead Fadilpašić | usagoldmines.com

Crypto Password-Cracking Firm Unciphered in Turmoil Over Co-Founder’s Controversial Past Ruholamin H...

Crypto Perpetuals Trading Doubles to $58.5T in 2024 While Binance’s Market Share Declines 20% Hassan...

Solana Community Rejects SIMD-0228 in Historic Vote as Small Validators Sway Outcome Hassan Shittu |...

Hyperliquid Tightens Trading Rules After Brutal $4M Loss – What’s Next? Harvey Hunter | usagoldmines...

Hong Kong Blockchain Sector Surges 250% Since 2022: Report Veronika Rinecker | usagoldmines.com

Is a Solana ETF Coming Soon? CME Futures Signal Big Move for SOL Simon Chandler | usagoldmines.com

BlackRock Expected to File for Solana and XRP ETFs, Says ETF Store President Jimmy Aki | usagoldmine...

Uniswap Bleeds 20%—Is This Whale Behind The Drop? Christian Encila | usagoldmines.com

Crypto News | Bitcoin outperforms tech stocks as US market opens to sea of green Liam 'Akiba' Wright...

Sugarverse Raises $1M, Announces Sugar Match on Tezos L2 Victor | usagoldmines.com

SOL Price: Can Solana Hit $300? Analysts Predict 40x Surge communityspeaks | usagoldmines.com

US consumer sentiment hits 2-year low as inflation fears hit 32-year high Jai Hamid | usagoldmines.c...

Mutuum Finance (MUTM) Becomes Most Sought At Crypto Presale In 2025 Cryptopolitan Media | usagoldmin...

Crypto News | Fairspin Casino Unveils CopyStake, a New Automated Betting Feature blockchainnews | u...

Crypto News | BTC Price Maintains $80K After Favorable CPI Data, XRP to Get Commodity Status? (Your...

Crypto News | Solana governance sets new participation record outpacing past US presidential electio...

Crypto News | Gold breaks $3,000 for first time amid global uncertainty as Bitcoin trades sideways O...

Crypto.com Gets Limited License in Dubai for Derivatives Victor | usagoldmines.com

BlackRock will file for both Solana and XRP ETFs, Nate Geraci Florence Muchai | usagoldmines.com

Over 30% of Russian banks not ready to embrace CBDC, report finds Vignesh Karunanidhi | usagoldmines...

Bitcoin Faces Rejection At $84,000, But Analysts Show 2020 Similarities – Recovery Ahead? Rubmar Gar...

Crypto News | Pi Network Turns 6: Latest Developments, Milestones, and Future Plans Dimitar Dzhondz...

Crypto News | This Meme Coin Soars 162% After Coinbase Roadmap Addition Wayne Jones | usagoldmines....

Crypto News | Trump-backed DeFi project WLFI closes raise surpassing goal reaching $590 million Oluw...

Solana inflation reduction proposal fails despite strong community support Cryptopolitan News | usag...

Bitcoin’s Price at a Crossroads—Will It Break $86K or Drop to $64K Support? Samuel Edyme | usagoldmi...

Best AI Agent Coins to Buy as Investor Hype Remains Steady on AI Industry Krishi Chowdhary | usagold...

Crypto News | SEC Reportedly Considering Classifying XRP as a Commodity Wayne Jones | usagoldmines....

Crypto News | Russian oil firms use Bitcoin, Ethereum, USDT for cross-border payments with China and...

Trump Crypto Executive Order Sparks New Bill for U.S. Bitcoin Stockpile Elena R | usagoldmines.com

World Liberty Financial ($WLFI) Token Sale Ends, Raising $550M Victor | usagoldmines.com

Coinbase Suspends FLOKI, TURBO and GIGA in NY Tari | usagoldmines.com

Tesla turns to cheaper cars and White House support to revive dwindling business Hannah Collymore | ...

9 tokens bought by Trump-backed WLFI suffer a $124M loss Florence Muchai | usagoldmines.com

We’re in a technical correction, not a bear market, says BofA Jai Hamid | usagoldmines.com

Rep. Byron Donalds introduces bill to make Trump’s strategic Bitcoin reserve permanent Jai Hamid | u...

Russia bypassing US sanctions with cryptocurrencies in oil trade Collins J. Okoth | usagoldmines.com

Anthony Scaramucci Predicts Bitcoin’s Rocket Surge To $200,000 Before End Of Year Brenda Ngari | usa...

Expert’s Bold Prediction Puts Sui (SUI) At $20 And Mutuum Finance (MUTM) At $10 Before August 2025 C...

Crypto News | Recent Ripple v. SEC Lawsuit Updates, Interesting XRP Price Predictions, and More: Bi...

Leave a Reply