Kraken recently found a security flaw in the Trezor One and T hardware wallets

Kraken Security Labs has identified a critical security issue in Trezor hardware wallets that allows seeds to be extracted from devices.

Kraken researchers say they could access to Trezor One and T wallet keys by manipulating the voltage in the microcontroller. These hardware components contain vital information, such as seeds, but are not designed for such purposes. This vulnerability has been understood for some time and has also been discovered in other hardware wallets.

To exploit this error, an attacker needs access to the physical device, which limits the severity of this threat. However, devices designed to break Trezor wallets using this procedure could easily be manufactured. In general, the team stated that it only takes 15 minutes to exploit this fault using specialized equipment.

However, Trezor's team is already aware of this problem and quickly published a reply to Kraken's findings at that time. Although this is not the first vulnerability found in Trezor devices, its repair will probably require a complete redesign of the hardware.

Security continues to be a constant challenge

The ability to securely store blockchain assets is an ongoing challenge. Expert opinions differ in the best methods, but most agree that hardware wallets, which are kept offline, are the safest means of preventing theft.

Of course, there are many quality software wallets available. However, these also carry risks. Of particular concern are desktop wallets, which have proven vulnerable to keyloggers and malware.

To help solve this problem, cryptocurrency custody services such as Baakt and Gemini are now emerging, often with loss insurance and an independent audit to ensure proper handling of cryptocurrencies. However, these services often charge high fees and have caused the anger of many investors who see them as unnecessary.

Trezor has developed a good reputation for producing quality equipment, and its hardware wallets are in great demand. Therefore, it is almost certain that the company will take this current problem very seriously and find a solution.

It is also worth noting that there are no known cases of cryptocurrency theft due to the exploitation of hardware wallet failures. In addition, the vast majority of cryptocurrency theft is due to user error. If they drive adequately, Hardware wallets are extremely secure and are updated periodically as blockchain technology advances.