Laser vulnerability discovered in Tangem crypto hardware wallets
A security researcher has demonstrated a method to reprogram Tangem crypto hardware wallets using a laser, potentially compromising the stored private keys. Baptistin Boilot, from Ledger Donjon, published findings showing that with a laser, scalpel, and considerable time, it's possible to impose a new code on a Tangem card without knowing the original. This exploit targets the secure element within the card, which is a Samsung chip certified EAL6+. This certification represents a high level of security for integrated circuits. The vulnerability implies that even with advanced security certifications, physical attacks can potentially bypass security measures. The research highlights the ongoing challenges in securing digital assets against sophisticated physical intrusion techniques. Further details on the specific laser manipulation and its implications for users are expected.
This research reveals a potential physical attack vector against Tangem crypto hardware wallets, targeting the secure element's firmware. While the attack requires specialized equipment and expertise, its success against an EAL6+ certified chip underscores the inherent trade-offs between hardware security and physical exploitability. Future hardware wallet designs may need to incorporate more robust physical tamper-resistance mechanisms to mitigate such laser-based or similar invasive attacks. This development prompts a broader discussion on the layered security approach for digital assets, emphasizing that software and hardware security alone may not suffice against determined adversaries employing advanced physical manipulation techniques.
AI-generated to prompt reflection — not editorial opinion, not advice, not a statement of fact. How this works.