Warning Ledger hardware wallets
Warning! The newly discovered vulnerability in all Ledger hardware wallets puts user funds at risk.
According to the report revealed by Ledger, а “man in the middle” attack can be performed when the user attempts to generate an address to receive bitcoins to their wallet. If the computer that is used in this process is infected by malware, the attacker can secretly replace the code responsible for generating the address, causing “all future deposits to be sent to the attacker.”
How to protect yourself:arrow_down:
Fortunately for the owners of their wallets, Ledger has also revealed how to avoid the “man in the middle” attack. According to the report, users should take advantage of an “undocumented” feature of the wallet that displays the receiving address on the wallet’s physical display. :point_right:By clicking the monitor button at the bottom left of the “Receive Bitcoins” menu and confirming the address on the hardware wallet’s display every time they generate a new one, users can ensure that the address has not been tampered with.
However, with Ledger’s over one million users affected by the newly discovered vector of attack, it becomes clear that even having a hardware wallet does not “make you invincible,” in the company’s own words.