TR
Bitcoin
Bitcoin (BTC)
$96,979.00 1.60848
Bitcoin price
Ethereum
Ethereum (ETH)
$3,218.56 1.15649
Ethereum price
BNB
BNB (BNB)
$700.82 1.38355
BNB price
Solana
Solana (SOL)
$188.93 1.31072
Solana price
XRP
XRP (XRP)
$2.80 9.88545
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000216 0.47148
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000173 0.04189
Pepe price
Bonk
Bonk (BONK)
$0.0000272 1.56464
Bonk price
dogwifhat
dogwifhat (WIF)
$1.53 1.17816
dogwifhat price
Popcat
Popcat (POPCAT)
$0.531044 -6.83483
Popcat price
Bitcoin
Bitcoin (BTC)
$96,979.00 1.60848
Bitcoin price
Ethereum
Ethereum (ETH)
$3,218.56 1.15649
Ethereum price
BNB
BNB (BNB)
$700.82 1.38355
BNB price
Solana
Solana (SOL)
$188.93 1.31072
Solana price
XRP
XRP (XRP)
$2.80 9.88545
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000216 0.47148
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000173 0.04189
Pepe price
Bonk
Bonk (BONK)
$0.0000272 1.56464
Bonk price
dogwifhat
dogwifhat (WIF)
$1.53 1.17816
dogwifhat price
Popcat
Popcat (POPCAT)
$0.531044 -6.83483
Popcat price
Bitcoin
Bitcoin (BTC)
$96,979.00 1.60848
Bitcoin price
Ethereum
Ethereum (ETH)
$3,218.56 1.15649
Ethereum price
BNB
BNB (BNB)
$700.82 1.38355
BNB price
Solana
Solana (SOL)
$188.93 1.31072
Solana price
XRP
XRP (XRP)
$2.80 9.88545
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000216 0.47148
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000173 0.04189
Pepe price
Bonk
Bonk (BONK)
$0.0000272 1.56464
Bonk price
dogwifhat
dogwifhat (WIF)
$1.53 1.17816
dogwifhat price
Popcat
Popcat (POPCAT)
$0.531044 -6.83483
Popcat price
Bitcoin
Bitcoin (BTC)
$96,979.00 1.60848
Bitcoin price
Ethereum
Ethereum (ETH)
$3,218.56 1.15649
Ethereum price
BNB
BNB (BNB)
$700.82 1.38355
BNB price
Solana
Solana (SOL)
$188.93 1.31072
Solana price
XRP
XRP (XRP)
$2.80 9.88545
XRP price
Shiba Inu
Shiba Inu (SHIB)
$0.0000216 0.47148
Shiba Inu price
Pepe
Pepe (PEPE)
$0.0000173 0.04189
Pepe price
Bonk
Bonk (BONK)
$0.0000272 1.56464
Bonk price
dogwifhat
dogwifhat (WIF)
$1.53 1.17816
dogwifhat price
Popcat
Popcat (POPCAT)
$0.531044 -6.83483
Popcat price

Hardware Glitch Renders KeepKey Helpless to Physical Brute Force Attacks

hardware-glitch-keepkey-physical-brute-force-attacks
By
This article is more than 4 years old
News
Hardware Glitch Renders KeepKey Helpless to Physical Brute Force Attacks

Kraken, a leading digital asset exchange, found a hardware vulnerability in ShapeShift’s KeepKey wallet, allowing a variable flow of voltage to bypass the pin code required to open the wallet. KeepKey customers are advised to ensure nobody else has physical access to their wallet, and to enable a BIP 39 passphrase to reduce vulnerability, December 10, 2019.

Securing Cryptocurrency Holdings

Some may argue that hardware wallets are meant to isolate cryptocurrency from the online world, so securing against physical attacks is out of the scope of a hardware wallet. But if a voltage glitch can open a hardware wallet, it shows negligence from the manufacturers side, and could indicate further flaws with the wallet.

Kraken continuously tests security infrastructure like hardware wallets under various conditions, trying to find vulnerabilities as they have with KeepKey. Although the process requires a fair amount of technical knowledge, the exchange estimates a consumer-friendly glitching device can be made for around $75, which, ironically, is cheaper than the wallet itself.

https://twitter.com/ShapeShift_io/status/1204607516757430272?s=20

BIP 39 is the implementation of a mnemonic pass phrase, consisting of 12-24 words in most cases. Using this, rather than an 1-9 digit PIN, eliminates the vulnerability as the password isn’t store on the device itself. This is a lot more cumbersome for someone who uses their KeepKey often, but it’s worth it to eradicate the risk of losing funds.

Hardware Wallets Still Safest Option

The philosophical debate of whether a hardware wallet is meant just for offline protection as well as physical protection can be vigorously debated, but even with this flaw, a hardware wallet is still the best bet for maximizing security.

Jameson Lopp, CTO at Casa, regularly runs physical tests to see whether hardware wallets made of different metallic structures can survive a fire. This is broadly in line with the idea that a hardware wallet must be secure from all fronts.

Institutions who find self custody to be a pain outsource this to entities like Coinbase, Anchorage, and BitGo. These companies have robust internal mechanisms, but there is still a risk given that one single entity – that is publicly known – holds the keys to billions of dollars in cryptocurrency.

For the retail investors out there, hardware wallets are still the best bet, and Ledger is the only one that hasn’t reported a critical but thus far.

Deep Dives

Congressman proposes IRS elimination
Follow-up
Read more - Congressman proposes IRS elimination

Congressman proposes IRS elimination

Singapore and CFTC zero in on Polymarket as wildfire bets fuel public outcry
Feature
Read more - Singapore and CFTC zero in on Polymarket as wildfire bets fuel public outcry

Singapore and CFTC zero in on Polymarket as wildfire bets fuel public outcry

USDC USDC USDC
Bo Hines is a future exec of the U.S. crypto council. What are his views on crypto?
Follow-up
Read more - Bo Hines is a future exec of the U.S. crypto council. What are his views on crypto?

Bo Hines is a future exec of the U.S. crypto council. What are his views on crypto?

From Bitcoin-Fi to restaking: Pantera Capital outlines what’s next for crypto in 2025
Feature
Read more - From Bitcoin-Fi to restaking: Pantera Capital outlines what’s next for crypto in 2025

From Bitcoin-Fi to restaking: Pantera Capital outlines what’s next for crypto in 2025

Bitcoin BTC Bitcoin
Crypto will come of age in 2025 | Opinion
Opinion
Read more - Crypto will come of age in 2025 | Opinion

Crypto will come of age in 2025 | Opinion

Bitcoin BTC Bitcoin
Bitcoin ATMs see 6% growth in 2024 amid renewed crypto interest
Follow-up
Read more - Bitcoin ATMs see 6% growth in 2024 amid renewed crypto interest

Bitcoin ATMs see 6% growth in 2024 amid renewed crypto interest

Bitcoin BTC Bitcoin
8,000 BTC buried in the landfill and other horror stories of the lost coins
Feature
Read more - 8,000 BTC buried in the landfill and other horror stories of the lost coins

8,000 BTC buried in the landfill and other horror stories of the lost coins

Bitcoin BTC Bitcoin XRP XRP XRP
Heritage Distilling and 5 other companies embracing Bitcoin
Follow-up
Read more - Heritage Distilling and 5 other companies embracing Bitcoin

Heritage Distilling and 5 other companies embracing Bitcoin

Bitcoin BTC Bitcoin
CBDCs must close the gap between old and new financial systems | Opinion
Opinion
Read more - CBDCs must close the gap between old and new financial systems | Opinion

CBDCs must close the gap between old and new financial systems | Opinion

How crypto plans to steal the spotlight at Trump’s inauguration
Feature
Read more - How crypto plans to steal the spotlight at Trump’s inauguration

How crypto plans to steal the spotlight at Trump’s inauguration

XRP XRP XRP USDC USDC USDC Bitcoin BTC Bitcoin

Related News

Satoshi Action Fund raises $300,000 as it advances Bitcoin advocacy
News
Read more - Satoshi Action Fund raises $300,000 as it advances Bitcoin advocacy

Satoshi Action Fund raises $300,000 as it advances Bitcoin advocacy

Bitcoin BTC Bitcoin
Pompliano urges Trump: Bitcoin is ‘good for the U.S. economy over the long run’
News
Read more - Pompliano urges Trump: Bitcoin is ‘good for the U.S. economy over the long run’

Pompliano urges Trump: Bitcoin is ‘good for the U.S. economy over the long run’

Bitcoin mining showed strong growth in 2024 despite halving: report
News
Read more - Bitcoin mining showed strong growth in 2024 despite halving: report

Bitcoin mining showed strong growth in 2024 despite halving: report

Bitcoin BTC Bitcoin
Advertise