1. BITBILIHome
  2. Article

Ledger co-founder refutes backdoor claims in latest firmware update

170 views

TL;DR Breakdown

  • Ledger’s co-founder Éric Larchevêque points to the hate the company got that “I’m honestly [on] the verge of tears,”
  • Company professionals insist that the latest addition to the wallet is safe without a backdoor.
  • It remains an investors choice to use Ledger or not.

In a recent statement, the co-founder of Ledger, one of the leading crypto hardware wallet manufacturers, has clarified speculations regarding the security of their recover firmware update. This announcement comes amidst concerns raised by some users about the possibility of a backdoor in the update compromising the integrity of their digital assets.

Ledger co-founder addresses concerns over recover firmware update

The launch of Ledger Recover, a service that allows Ledger hardware wallet users to back up their private recovery phrases, was greeted with intense opposition from the crypto community. Ledger co-founder and former CEO Éric Larchevêque characterized the company’s criticism as “a total PR failure, but absolutely not a technical one.”

Ledger’s co-founder emphasized the company’s unwavering commitment to security and reassured users that there is no backdoor in the recover firmware update. He highlighted that the wallet is dedicated to maintaining the highest standards of security and privacy for their customers’ crypto assets. 

Larchevêque clarified on Reddit that Ledger was never a trustless solution in response to the rising concerns of users around the globe.

Some amount of trust must be placed into Ledger to use their product. If you don’t trust Ledger, meaning you treat your HW manufacturer as an adversary, that can’t work at all.

Éric Larchevêque 

With over millions of users worldwide, the wallet has become a trusted name in the crypto industry. Their hardware wallets provide a secure offline environment for storing private keys, offering an added layer of protection against cyber threats and hacking attempts.

He argued that the recent update has no effect on the security model of the hardware wallet. He added:

My mistake as a CEO during my tenure was probably not be relentless enough about explaining the security model, but at some point you just give up as people don’t care at all. Until they care again, like now.

Éric Larchevêque 

Larchevêque believed that the only thing that has changed is the perspective of the average user on unreliability, and that the Recover code in the firmware is not malicious:

[The wallet] is still safe, there is no backdoor, the Ledger Recover is not a conspiracy, no one will ever force anyone to use Recover.

Éric Larchevêque 

The aforementioned firmware update is unavailable for Nano S, Ledger’s most affordable hardware wallet, because the chipset lacks sufficient memory to store the new firmware.

The hard lesson learnt by Ledger: Being right isn’t good enough

Ledger, despite being at the forefront of crypto security, has recently faced challenges that have highlighted the importance of not only being right but also effectively addressing concerns and maintaining trust in an evolving digital landscape.

In response to the release of the wallet’s contentious firmware update, GridPlus, a competing hardware wallet provider, decided to open-source its firmware for its customers.

Using the wallet controversy as a marketing opportunity, GridPlus announced plans to make its device firmware as open source in the third quarter of 2023 in order to increase transparency. The co-founder also noted that there had been too much hate.

I’m devastated to come on this subreddit, that I created nine years ago, to see images of Ledger devices burning, insults, and lot and lot of anger. I’m honestly [on] the verge of tears.

Éric Larchevêque 

Larchevêque co-founded hardware wallet in 2014 and served as its CEO until 2019. Currently, he is only a company shareholder; he does not occupy an executive position. Therefore, the views conveyed in his post are his own and do not represent the official position of Ledger on the issue.

According to Philip Costigan, the communications director for the hardware wallet, the new feature does not imply that the device communicates with custodians over the internet, as Ledger wallets “have no WiFi or other internet connection capability.”

Costigan explained that to transmit encrypted portions of the seed to custodians, users must connect their wallet to their phone via Bluetooth and the wallets app. When the hardware wallet owners want to expend crypto from their wallets, the same mechanism is used to authorize transactions.

Disclaimer. The information provided is not trading advice. Cryptopolitan.com holds no liability for any investments made based on the information provided on this page. We strongly recommend independent research and/or consultation with a qualified professional before making any investment decision.

文章来源于互联网:Ledger co-founder refutes backdoor claims in latest firmware update

Disclaimers:

1. You are solely responsible for your investment decisions and this info is not liable for any losses you may incur.

2. The copyright of this article belongs to the writer, it represents the writer's opinions only, not represents the site's ones. Not financial advice.

Previous 2023年5月21日 12:00
Next 2023年5月21日 15:10

Related articles

  • South Korea bolsters crypto oversight with LEI integration & a crime unit

    TL;DR Breakdown South Korea has launched an inter-agency investigation unit to combat the surge of crypto crimes, including hacking, scams, and money laundering in the country. The interagency probe team brings together experts from different government departments to respond to emerging crypto threats and protect investors swiftly. Korea Securities Depository and Code, a travel rules company, signed a business agreement in Seoul to promote LEI (Legal Entity Identifier) use in the virtual asset market. Description South Korea has taken decisive action by forming an interagency investigation team to address the growing concerns over cryptocurrency crimes. The crypto market has grown increasingly popular and drawn a wide range of investors, but it has also become a haven for illegal activity.  This action represents a significant step towards enhancing national crypto regulation. … Read more South Korea has taken decisive action by forming an interagency investigation team to address the growing concerns over cryptocurrency crimes. The crypto market has grown increasingly popular and drawn a wide range of investors, but it has also become a haven for illegal activity.  This action represents…

    Article 2023年7月27日

  • Crypto crimes plummet amid a rise in digital asset prices

    TL;DR Breakdown Chainalysis has reported a massive decline in crypto crimes despite a strong rise in the price of digital assets. Ransomware is still on the rise despite a drop in other crimes in the space. Description In a positive turn of events for the crypto space, crypto crime has seen a substantial decline this year, alongside the surge in digital asset prices. Blockchain data firm Chainalysis reported a remarkable 65% drop in crypto-related crime compared to 2022. The findings were based on the analysis of digital asset inflows to illicit entities, … Read more In a positive turn of events for the crypto space, crypto crime has seen a substantial decline this year, alongside the surge in digital asset prices. Blockchain data firm Chainalysis reported a remarkable 65% drop in crypto-related crime compared to 2022. The findings were based on the analysis of digital asset inflows to illicit entities, which the firm categorizes as addresses associated with darknet markets or ransomware attackers. Chainalysis reports a decrease of 65% in crypto crimes According to Chainalysis, inflows to “risky entities,” including…

    Article 2023年7月14日

  • Balancer escapes major hack, but $2.8 million still at risk following vulnerability discovery

    TL;DR Breakdown Balancer detected a critical vulnerability across eight blockchains, initially risking $11.7 million; most of the risk was mitigated quickly. Experts praised Balancer’s swift response, but $2.8 million remains at risk after liquidity providers withdrew over $200 million. The incident has prompted discussions about transparency in the crypto community and may influence the development of layer-2 scaling solutions. Description In a close call that could have resulted in a catastrophic event for the decentralized finance (DeFi) protocol, Balancer has warned that $2.8 million remains at risk following the discovery of a critical vulnerability on August 22.  As per the announcement on August 24, users are urged to “withdraw as soon as possible” if they … Read more In a close call that could have resulted in a catastrophic event for the decentralized finance (DeFi) protocol, Balancer has warned that $2.8 million remains at risk following the discovery of a critical vulnerability on August 22.  As per the announcement on August 24, users are urged to “withdraw as soon as possible” if they have linked their wallets to the affected…

    Article 2023年8月25日

  • Twitter points finger at Microsoft for data abuse

    TL;DR Breakdown Twitter, under the ownership of Elon Musk, has accused Microsoft of unauthorized data use, breaching the provisions of their data usage agreement. The issue arose after Microsoft reportedly declined to pay for continued access to the social media’s API, which had been previously free for certain developers and researchers but is now charged. Alex Spiro suggests in a letter to Microsoft that some of its products, including Azure cloud and Bing, have excessively used Twitter’s API, potentially bypassing throttling limits. In an unexpected turn of events, Twitter, the popular social media platform, has accused software giant Microsoft of alleged misuse of its data. The charge, spearheaded by Alex Spiro, a partner at Quinn Emanuel Urquhart & Sullivan and legal representative for the company’s owner Elon Musk, suggests that Microsoft’s actions might have crossed the boundaries set by their data usage agreement. Accusations amidst growing data ownership debates Twitter’s acquisition by Musk in October stirred the digital space, particularly when he opted for the CEO role and initiated charges for using Twitter’s application programming interface (API). Prior to this,…

    Article 2023年5月20日

  • Reviving the Terra ecosystem: Six Samurai’s bold proposal

    TL;DR Breakdown Six senior full-stack engineers, known as the “Six Samurai”, proposed a bold plan to revive the Terra ecosystem. The group plans to upgrade the system by migrating from Columbus-5 to Columbus-6 and integrating the latest Cosmos SDK. The proposal includes plans to list Terra Classic on Keplr’s web interface and Mintscan, a Cosmos block explorer. Description The Terra ecosystem, a highly innovative yet recently beleaguered platform, stands on the precipice of an audacious revival, thanks to a bold proposal from a group of engineers known as the “Six Samurai.” Operating under the banner of Terra Allies, these senior full-stack engineers bring to the table a potent blend of expertise, determination, and … Read more The Terra ecosystem, a highly innovative yet recently beleaguered platform, stands on the precipice of an audacious revival, thanks to a bold proposal from a group of engineers known as the “Six Samurai.” Operating under the banner of Terra Allies, these senior full-stack engineers bring to the table a potent blend of expertise, determination, and a tangible vested interest as holders of Terra Classic…

    Article 2023年6月28日
TOP