ATTACK ON LEDGER IS A HOLE IN A WALLET

Views: 273
p2ps p2ps p2ps

A critical vulnerability in Ledger’s hardware wallet affects all devices and can lead to loss of user funds, the company’s report said. The so-called “man in the middle” attack can be performed when the wallet is connected to the network for sending funds or downloading the recipient’s address. “If the computer that is used in this process is infected with malicious software, an attacker can secretly change the code responsible for creating the address, as a result of which all future deposits will be sent to the attacker.” However, researchers argue that users can protect themselves from the vulnerability by using the “Undocumented” function that displays the recipient’s address on the wallet physical display.

Comments: 0