Teenager Who Hacked Ledger Hardware Wallet Says Devices Still Vulnerable, Devs Deny

Cryptocurrency hardware wallet manufacturer Ledger continues to refute claims its devices can be hacked after a teenager compromised them, Ars Technica reports today, March 21.

After British 15-year-old Saleem Rashid created code to ‘backdoor’ Ledger’s wallets in November 2017, the company released posts describing the events as “NOT critical” and said possible attacks “cannot extract the private keys or the seed.”

Rashid then refuted the claims on social media and a post on his personal blog entitled “Breaking the Ledger Security Model” March 20, stating he could still “autonomously extract the root private key once the user unlocks the device” and use to it instigate manipulation of destination addresses for transactions.

The argument puts pressure on both Ledger and its millions of users, who had until now broadly accepted the company’s claims its wallets were 100% secure…

Read Full: Teenager Who Hacked Ledger Hardware Wallet Says Devices Still Vulnerable, Devs Deny