WALLET.FAIL

Poof goes your crypto ...

Ledger Nano S: Weak Physical Design

Classification

Serious

Bug Type

Physical

Affected Wallet

Ledger Nano S

Summary

An attacker with physical access can physically manipulate the device without the user noticing.

The Bloomburglar

Vulnerability Details

Since The Ledger Nano S case does not provide any sort of tamper evidence, it is susceptible to being opened and manipulated. The debug port of the Ledger Nano S MCU is directly accessible once opened. A supplier with control of the supply chain, i.e. a malicious sellar on ebay, could easily manipulate the wallet without the buyer noticing. The attacker could easily place an implant capable of injecting and manipulating data sent to wallet. As this vulnerability requires a physical redesign to the Ledger case, this bug is unlikely to be fixed.

Bloomburglar

The Open Source Hardware Design of the Bloomburglar is available on our Github page.

What is a physical vulnerability?

Physical vulnerabilities are vulnerabilities affecting the hardware design of the hardware wallet. Once the device has been manufactured, hardware vulnerabilities cannot be mitigated and can only be fixed in a future hardware revision of the device. This class of vulnerabilities is unlikely to be fixed by the wallet vendor.

Using the Ledger Nano S?

Are you storing a substantial amount of cryptocurrency on your Ledger Nano S? If you would like a consultation on how to safely store your funds, please contact us at info@wallet.fail.

Our team of renowned security experts will help you assess the impact of these findings and whether they merit a change to how you store cryptocurrency. For a full list of services offered by our team, please visit our website.

Newsletter