[ 3 / biz / cgl / ck / diy / fa / ic / jp / lit / sci / vr / vt ] [ index / top / reports ] [ become a patron ] [ status ]
2023-11: Warosu is now out of extended maintenance.

/biz/ - Business & Finance

View post   
File: 25 KB, 474x474, OIP (1).jpg [View same] [iqdb] [saucenao] [google]
55017116 No.55017116 [Reply] [Original]

>EU passes a law that HWW vendors must hand over the keys of their clients
>Ledger and Trezor push firmware updates without telling you
>your keys uploaded to their servers
>your crypto goes *poof*

What's stopping this from happening?

>> No.55017226

People will go to other products at most they should lobby against it

>> No.55017265

>>55017116
Wait. What? Trezor too?

>> No.55017274

>What's stopping this from happening?
noncompliance

>> No.55017381

>>55017116
Make your own wallet faggot

>> No.55017395

>>55017116
I've always hated that people call these fancy wallets as cold storage.
Anything that's not completely airgapped (and preferably stateless) is not cold

>> No.55017526

>>55017116
>Trezor push firmware updates without telling you
proof!?!?

>> No.55017540

THE EU CAN GET FUCKED.

And any reputable seller should remove their business from the EU to not be governed by their authoritarian shit.

>> No.55017586

>>55017116
the based eu would never do this. the eu saves us from fraudsters, corruption and thievery

>> No.55017617

>>55017265
All hardware wallets are comped, and always were.

>> No.55017635

>>55017586
kek, they are the fraudsters, corruption and thievery.

>changelog
>https://github.com/trezor/trezor-firmware/blob/master/core/CHANGELOG.md
i dont see it.
but Tbh i dont like the Ability to restart device in bootloader mode without unplugging it.
>"Add the possibility of rebooting the device into bootloader mod"

It was safer when you had to disconect and swipe the screen while plugging in to put in firmware update mode, this prevents some virus just flashing on malicious firmware while your connected.

gonna have to email these dumb fucks.

>> No.55017660
File: 3.29 MB, 290x188, 23821DDE-053A-444D-9AEF-AD554CFF4177.gif [View same] [iqdb] [saucenao] [google]
55017660

>>55017526

>> No.55017673
File: 70 KB, 638x358, 0FD16593-CE42-4760-99FD-1760345A9705.jpg [View same] [iqdb] [saucenao] [google]
55017673

>>55017540

>> No.55017689

>>55017116
You could just make a paper wallet for your keys.

>> No.55017719

>>55017689
only helps you for cold storage.
but if you want to transact regularly, and securely, you need a HW wallet.

Back when i mined bitcoin a long time ago, there was a wallet that let you sign transactions on an offline computer, and copy the signed file to usb, and then submit it online, but i dont know of any wallets doing that these days.

>> No.55017731
File: 485 KB, 248x186, 1682654269330020.gif [View same] [iqdb] [saucenao] [google]
55017731

>>55017116
only few comment worth reading....these wallet are not cold. simple as...

>> No.55019086

>>55017719
You can do it with Electrum

>> No.55019272

works on ledger
they can target individual devices with unique updates and you'll never know

doesn't work on trezor
everyone uses the same open source software, and you can build it yourself from github to see it matches exactly with what you're about to install

>> No.55019285

Good luck updating the firmware of my piece of paper

>> No.55019299

>>55017381
Pretty much this. I'll buy stuff on the various exchanges, but I immediately put stuff on my private wallets. Only a fool would leave money on their exchange wallets. I've seen companies like Voyager go bust overnight and be lucky enough to not get fucked.

>> No.55019302

>>55019272
this. trezor is the only option. it's fully open source

>> No.55019305

>>55019285
>what is fire

>> No.55019333
File: 177 KB, 1286x802, file.png [View same] [iqdb] [saucenao] [google]
55019333

>>55019302

>> No.55019336
File: 70 KB, 1318x250, file.png [View same] [iqdb] [saucenao] [google]
55019336

>>55019333
check 'em

>> No.55019374

>>55019333
Do you even know what phishing means lmao
>>55019336
Yeah bro just give some random retard your trezor that doesnt have a passkey so he can tamper with it

>> No.55019392

>>55019299
way to miss the point retard

>> No.55019410

>>55017265
>>55017617
Everything in Trezor is open source though, so anyone could see what the new firmware contains.

>> No.55019447

>>55017116
This begs the question. All of those people who claim to have "lost all my crypto because MUH LEDGER WAS HACKED!"

We're they really backdoored by someone exploring a vulnerability that was always built into the ledger hard wallets. Or were they just grossly incompetent and had a picture of the keys on their phone, gf saw them, etc?

Both could have happened sure. But one resulted in crypto stolen WAY MORE than the other. Which one was it?

>> No.55019517
File: 107 KB, 452x616, chud.png [View same] [iqdb] [saucenao] [google]
55019517

>>55019374

>> No.55019526

>>55019517
Thanks for the concession idiot!

>> No.55019927
File: 174 KB, 1414x998, ledgetranny.jpg [View same] [iqdb] [saucenao] [google]
55019927

>>55019517
Ledger doing damage control

>> No.55020225

>>55019333
>>55019336
>>55019517
the grand result of ledger's shitty hardware is bad memes from the left

if you bought a ledger device in the past few years you got completely outplayed by marketing.
the official choice of the midwit.

>> No.55021079

>>55017116
>>55017617
post link faggots

>> No.55021125

1. Only use wallets that are open source
2. Don't update firmware for a while so any backdoor would have been exposed
3. Keep the majority of your funds you aren't using in a cold wallet so it doesn't matter as much if your hardware wallet is compromised.

>> No.55021195

>>55021079
Its bullshit fud lol. Trezor is fully open source. Anyone could see the backdoor being added.

The only risk is compromised hardware and supply chain, which would still be detectable be security researchers but they might get away with it for a while.

>> No.55021275

>>55017116
Sounds like a self defense situation