It is generally accepted that crypto-currency hardware wallets are very reliable, and therefore are best suited for storing their savings and conducting various transactions. One of the most successful devices last year was the French hardware cryptic escort Ledger, whose sales quickly passed over a million devices. But recently, representatives of the company-developer reported that Ledger found a critical vulnerability, allowing you to substitute the final purses and steal the recipient’s own crypto currency.

To send funds or download the address of the recipient to Ledger, it must be connected to the Internet – at this stage, the attackers and get access to the device. Ledger wallets create a display address using JavaScript, and malware has the ability to change the details of the attacker’s address, after which all the money intended for the recipient will go to the scammers, and the sender will be sure that everything is in order.

So far, no one has suffered from the vulnerability in the wallet, but the developers posted a video on the site with a demonstration proving that it is real and dangerous. It is noted that the software purse stored on the PC in the folder AppData, too, can be attacked by scammers after substituting the address of the recipient.

Avoid the trick of hackers can be quite simple: the developers recommend that before making transactions, always verify the correct address of the recipient – just press the button with the monitor image. After that, the user can independently confirm the correctness of the transaction with one more click.

Even despite the occasional “holes” in the security of such devices, the use of hardware wallets is still one of the most effective and safe options for storing crypto currency, because there are absolutely no solutions at present safe from the attackers.

Chat about crypto-currencies.
Chatabout iron and mining.

Leave a Reply

Your email address will not be published. Required fields are marked *