Ledger’s “Recover” service may be concerning, but some crypto industry participants think the feature may onboard new users while helping crypto natives.
Ledger Recover Fiasco Exposes Gap Between Blockchain Ideals and Technical Reality
After a video went viral of what appears to be a hardware wallet getting smashed with a hammer and then blow-torched into a charred mass, Ledger (and all of the crypto industry) got a searing reminder on the importance of managing expectations.
Ledger’s PR Struggle Reveals Uncomfortable Trade-Offs for Crypto Storage
Hardware wallet maker said full open sourcing is not an option as it needs to protect the security of its chip design.
Crypto Security Firm Unciphered Claims Ability to Physically Hack Trezor T Wallet
Unciphered, a company of cybersecurity professionals who recover lost cryptocurrency, says it found a way to physically hack into the Trezor T hardware wallet. Trezor says it acknowledged a similar-sounding attack vector a few years ago.
Ledger co-founder clarifies “there is no backdoor” in Recover firmware update
Ledger Recover is an OTA firmware update, which would allow users to back up their seed phrases by third-party entities only if a user chooses to opt-in to the new service.
Is Ledger’s New Bitcoin Key Recovery Feature Safe? Experts Have Doubts
Ledger believes the service will help attract customers turned off by crypto’s unforgiving self-custody ethos. But critics wonder whether the concept is compatible with a real hardware wallet.
Ledger clarifies how its firmware works after deleted tweet controversy
Developers say third-party apps can’t access Ledger users’ keys without the device owner’s consent.
Ledger Continues to Defend Recovery System, Says It’s Always ‘Technically’ Possible to Extract Users’ Keys
“Technically speaking it is and always has been possible to write firmware that facilitates key extraction. You have always trusted Ledger not to deploy such firmware whether you knew it or not,” Ledger said on Twitter.
Crypto community reacts to Ledger wallet’s secret recovery phrase service
Many members of the crypto community believe Ledger’s latest seed phrase recovery feature is a bad idea.
‘Trusted seller’ vends fake Trezor wallets stealing crypto: Kaspersky
Cryptocurrency users are once again reminded about the importance of using only authentic hardware wallets.
Is This Latest Ledger Firmware Update A Disaster In The Making?
Ledger, the hardware wallet provider, recently upgraded its firmware to version 2.2.1. They introduced an additional safety net called the “Ledger Recover” that the crypto community is vehemently rejecting.
While upgrades are critical considering the fast-paced nature of cryptocurrencies, Ledger is now being criticized after offering an option for users to store their seed phrases online. The hardware wallet manufacturer said this feature makes it easier for users to quickly recover their seed phrases in case they misplace them.
The “Ledger Recover” Feature Rejected
The subscription-based service called “Ledger Recover” effectively grants the manufacturer access to clients’ seed phrases; defeating the purpose of using a cold wallet in the first place.
Related Reading: DOJ Crypto Task Force Goes After DeFi Hackers As Illicit Activity Soars
The platform says Recover is an “ID-based key recovery service that provides backup” for seed phrases for coins like Bitcoin.
Earlier, Ledger’s co-founder said Recover will split a seed phrase into three shards. A section is distributed to Ledger, Coincover — a crypto custody firm, and EscrowTech, a company that escrows codes. Therefore, if a user loses access to their cold wallet by misplacing their private key, two of the three custodians can combine their code to recover the wallet’s contents.
While this could help, as it is designed, a cold or hardware wallet is non-custodial. Technically, it should be delinked from the internet. By default, Ledger wallet holders should always be responsible for their seed phrases.
Seed phrases allow users to sign transactions confirming that they are the true owners. Whenever they are misplaced, the token owner losses access to all their coins.
Although the “Ledger Recover” feature is a precaution, some even claim this move makes Ledger a “hot” wallet. A hot wallet is a cryptocurrency wallet connected to the internet and is often the target of nefarious agents. Whenever hackers strike, they aim to wipe clean assets stored in hot wallets like MetaMask or Coinbase Wallet.
KYC Requirements And Learning From The Past
Besides Ledger requiring access to private keys, the “Recover” feature demands that users verify their identity as part of the know-your-customer (KYC) rules.
As part of this verification and compliance with KYC, users must submit their government-issued cards. Critics say this is against the principles of crypto that work toward preserving privacy and diffusing power from one entity.
Trusting private identity documents to a centralized entity can be disastrous. In 2020, Ledger’s database was compromised, and hackers dumped hundreds of thousands of wallet buyers’ confidential information, including physical addresses.
Hackers later used the same dumped details to target clients in an extortion campaign that affected even some of the top executives of Ledger.
Ethereum researcher says staking reveals IP address sparking privacy concerns
A researcher at the Ethereum Foundation said he had “internally” discovered that staking Ether reveals a user’s IP address information.
Binance self-custody wallet launches crypto-to-fiat off-ramp
Trust Wallet has partnered with MoonPay and Ramp to allow customers to convert their crypto to fiat without using any centralized exchange.
Crypto wallet Ledger raises $109M as demand for self-custody soars
The funding is the first of three rounds for the hardware wallet provider, whose success has been fueled by growing awareness of crypto self-custody.
Scam alert: Trezor warns users of new phishing attack
The new active phishing attack is trying to steal Trezor users’ crypto by tricking investors into entering their recovery phrase on a fake Trezor site.
Trezor to produce chips for hardware wallets to shorten supply cycle
Trezor wants to respond quickly to demand-triggering events like the FTX collapse by taking control of wallet chip production.
Coinkite’s New Bitcoin Hardware Wallet Looks Like BlackBerry, Takes AAA Batteries
The new Coldcard Q1 model aims to blend security and convenience – with a physical QWERTY keyboard recalling the look of a 2000’s-style waffle phone. It relies on a flashlight and LED scanner to read QR codes – instead of using a camera, which can be an attack vector.
1inch launches proprietary hardware wallet as self-custody trend grows
1inch Networks’ upcoming hardware wallet has no direct connection to the internet and doesn’t require any wired connection.
Bitcoin price not more important than financial independence: Trezor CEO
Amid Bitcoin briefly returning to above $19,000, Trezor’s new CEO Matěj Žák said there’s something more important than its price.
Multi-party computation could offer increased protection for crypto wallets
Multi-party computation can help users to protect their private keys and seed phrases when used in wallets.