pull down to refresh

21 sats \ 5 replies \ @ln123 10 Nov 2022 \ on: How almost all hardware wallets can steal your seed bitcoin

Another good reason to multi-sig

write
preview
10 sats \ 2 replies \ @JeanLamine 10 Nov 2022

Or bip85 and some passphrases to keep it simple. Multisig is tricky.

reply
0 sats \ 1 reply \ @joko OP 10 Nov 2022

I don't think BIP85 or passphrases protect you in case of malicious firmware

reply
0 sats \ 0 replies \ @ln123 10 Nov 2022

Nor malicious hardware

reply
0 sats \ 1 reply \ @ken 10 Nov 2022

I need to multisig asap. I'm always considering that one of my hardware wallets may be compromised. The FBI sold honeypot burner phones for years without being detected. What are the chances that a state actor hasn't compromised the supply chain of one of the major hardware manufacturers?

reply
1 sat \ 0 replies \ @joko OP 10 Nov 2022

The point of the article is that there is a way to not having to trust the supply chain of your hardware wallet. Usually there is no easy way for a manufacturer to steal users funds (if they know what they are doing), except for a convert nonce channel. Anti-Klepto fixes this.

MultiSig eliminates that problem, but introduces others.

reply