fbpx

Follow us on social

Trezor

Falha nas carteiras de hardware da Trezor permite que hackers acessem dispositivo em apenas 15 minutos

Nesta sexta-feira (31), a Kraken Security Labs informou que identificou uma falha crítica de segurança nas carteiras hardware de criptomoedas da Trezor, a qual permitiu que hackers extraíssem seeds em apenas 15 minutos.

Separador de texto - Bitcoin.

Seeds 

Os seeds são um conjunto de 12 ou 24 palavras aleatórias geradas pelo sistema para a recuperação de uma wallet.  Essas palavras devem ser guardadas com muito cuidado, pois são elas que permitem que o usuário acesse os ativos armazenados na carteira caso algo aconteça com o dispositivo.

Separador de texto - Bitcoin.

A falha

De acordo com a Kraken, o ataque só é possível devido a falhas inerentes ao microcontrolador usado nas carteiras Trezor One e Trezor Model T. 

A empresa informou que a Trezor está ciente dessa vulnerabilidade desde outubro de 2019. No entanto, as informações foram divulgadas agora para que a comunidade possa se proteger.

A Kraken frequentemente faz testes para descobrir como é possível fazer ataques contra a comunidade de criptomoedas antes que criminosos façam isso. Em uma pesquisa anterior, a empresa detectou uma falha na carteira KeepKey. 

Separador de texto - Bitcoin.

Cuidados

Segundo a Kraken, dificilmente a Trezor conseguirá resolver essa vulnerabilidade sem uma reformulação do hardware. Por isso, a orientação é que os usuários das carteiras habilitem a senha BIP39. 

Nick Percoco, diretor de segurança da Kraken, disse ao The Block que para resolver esse problema “[a Trezor] precisaria essencialmente lançar um novo dispositivo”.

É uma falha que está presente no hardware, e não algo que eles podem simplesmente colocar uma atualização formal e corrigi-la para todos os seus clientes, afirmou Percoco.

Separador de texto - Bitcoin.

Nota da Trezor

A Trezor publicou uma nota em seu blog informando que o ataque não pode acontecer remotamente e não funcionará se os usuários ativarem a senha do BIP39.

“O acesso físico é uma ameaça para 6-9% das pessoas, de acordo com nossa pesquisa”, disse a Trezor em um tweet. 

 

 

O diretor de segurança da Kraken confirmou as alegações da Trezor. “Não teríamos sido capazes de realizar esse ataque se houvesse uma senha do BIP 39, mas, infelizmente, a senha é uma adição opcional que nem todos os usuários utilizam”. 

Percoco enfatizou que a Kraken decidiu comunicar a comunidade para conscientizá-la sobre a vulnerabilidade. 

“Isso é para que nossos clientes e os usuários da comunidade Bitcoin estejam cientes de que precisam tomar precauções adicionais ao usar uma carteira de hardware para garantir que suas sementes sejam protegidas”, declarou. 

 

 

Cadastre seu e-mail para receber notícias e novidades em primeira mão.

Gostou desse artigo? Seja o primeiro a ver outros conteúdos como esse.

About The Author

Somos a vanguarda da informação sobre Bitcoin e altcoins no Brasil. Desde 2013, fazemos iniciantes entenderem o que é criptomoeda e como funciona a blockchain e ajudamos especialistas a tomar decisões de investimento por meio de conteúdo original e notícias relevantes sobre as diferentes moedas digitais. Para isso, tornamos o conhecimento acessível em artigos, tutoriais, vídeos, podcasts e newsletters. Neles, informamos diariamente o valor do Bitcoin, Ethereum, Bitcoin Cash, Litecoin ou outros ativos, acompanhamos a movimentação do mercado de Bitcoin e seus efeitos sobre outras criptomoedas, avaliamos exchanges, moedas e outros projetos, trazemos especialistas para explicar conceitos e acontecimentos, e ensinamos desde operações básicas, como comprar Bitcoin, até mais complexas, como montar uma máquina de mineração. Se você quer ser o primeiro a saber disso tudo, acompanhe nossas redes sociais.

Comments

  • Avatar
    Guy
    20/08/2021

    Hey very interesting blog!

  • Avatar
    web hosting in
    28/08/2021

    Hello, i feel that i noticed you visited my blog so i got here to go back
    the want?.I am attempting to in finding issues to
    enhance my website!I assume its ok to make use of some of your ideas!!

  • Avatar
    tinyurl.com
    29/08/2021

    If you desire to improve your experience just keep visiting this web site and be updated with the newest news posted here.

  • Avatar
    are quest bars
    30/08/2021

    This is a topic which is near to my heart…
    Thank you! Where are your contact details though?

  • Avatar
    t.co
    31/08/2021

    Amazing blog! Is your theme custom made or did
    you download it from somewhere? A design like yours with a
    few simple adjustements would really make my blog shine.
    Please let me know where you got your design. Thanks

  • Avatar

    I love what you guys are usually up too. Such clever work and reporting!
    Keep up the terrific works guys I’ve added you guys to my personal blogroll.

  • Avatar
    asmr of
    01/09/2021

    Howdy are using WordPress for your blog platform? I’m new
    to the blog world but I’m trying to get started and create my own. Do you require any coding expertise
    to make your own blog? Any help would be greatly appreciated!

  • Avatar
    http://j.mp/3kKtL7d
    03/09/2021

    I have read several excellent stuff here. Definitely value bookmarking for revisiting.
    I surprise how much effort you set to create the sort of
    excellent informative web site.

  • Avatar

    Howdy very nice web site!! Guy .. Excellent .. Superb .. I will bookmark your blog and take the
    feeds additionally? I am satisfied to find numerous helpful info here within the publish, we’d like
    work out extra strategies on this regard, thanks for sharing.
    . . . . .

  • Avatar
    why asmr
    04/09/2021

    Does your site have a contact page? I’m having trouble locating it but, I’d like to shoot you an e-mail.
    I’ve got some suggestions for your blog you might be interested in hearing.

    Either way, great site and I look forward to seeing it improve over time.

  • Avatar
    tinyurl.com
    05/09/2021

    It’s amazing in support of me to have a site, which is valuable in favor of my know-how.
    thanks admin

  • Avatar
    http://j.mp
    06/09/2021

    Hello, I want to subscribe for this weblog to get most up-to-date updates, so where can i do it please assist.

  • Avatar

    Excellent items from you, man. I’ve take note your stuff prior to
    and you are simply too excellent. I actually like what you
    have obtained here, really like what you are saying and the best way wherein you say it.
    You make it enjoyable and you still care for to keep it sensible.
    I can not wait to learn much more from you.
    This is really a tremendous website.

  • Avatar
    app.gumroad.com
    10/09/2021

    Hi! This post could not be written any better! Reading through this post reminds me
    of my previous room mate! He always kept talking about this.
    I will forward this post to him. Pretty sure he will have a good read.
    Thank you for sharing! asmr https://app.gumroad.com/asmr2021/p/best-asmr-online asmr

  • Avatar
    it quest bars
    11/09/2021

    Its like you read my mind! You seem to know a
    lot about this, such as you wrote the e-book in it or something.
    I feel that you simply can do with some p.c. to force the
    message house a bit, however other than that, this is wonderful blog.
    A great read. I’ll definitely be back. quest bars http://bit.ly/3jZgEA2 quest bars

  • Avatar
    http://tinyurl.com/
    12/09/2021

    Hi to every body, it’s my first go to see of this weblog; this website includes awesome and actually good information in favor of visitors.
    cheap flights http://1704milesapart.tumblr.com/ cheap flights

  • Avatar

    Just want to say your article is as astonishing. The clarity in your post is simply excellent and i can assume you are an expert on this subject.
    Fine with your permission let me to grab your RSS feed to keep updated with forthcoming post.
    Thanks a million and please continue the gratifying
    work. scoliosis surgery https://0401mm.tumblr.com/ scoliosis surgery

  • Avatar
    coub.com
    12/09/2021

    whoah this weblog is wonderful i love reading your posts.
    Stay up the great work! You already know,
    many individuals are hunting around for this information, you can aid them greatly.
    scoliosis surgery https://coub.com/stories/962966-scoliosis-surgery scoliosis surgery

  • Avatar
    www.iherb.com
    14/09/2021

    Hey there would you mind stating which blog platform you’re working with?
    I’m looking to start my own blog in the near future but
    I’m having a tough time deciding between BlogEngine/Wordpress/B2evolution and Drupal.
    The reason I ask is because your layout seems different then most blogs and I’m looking
    for something unique. P.S My apologies for being off-topic but I had to ask!
    quest bars https://www.iherb.com/search?kw=quest%20bars quest bars

  • paypound
    21/09/2021

    … [Trackback]

    […] Find More Info here on that Topic: bitcoinnews.com.br/carteirasbitcoin/falha-nas-carteiras-de-hardware-da-trezor-permite-que-hackers-acessem-dispositivo-em-apenas-15-minutos/ […]

  • Guns for sale
    01/10/2021

    … [Trackback]

    […] Information on that Topic: bitcoinnews.com.br/carteirasbitcoin/falha-nas-carteiras-de-hardware-da-trezor-permite-que-hackers-acessem-dispositivo-em-apenas-15-minutos/ […]

  • Avatar
    j.mp
    22/10/2021

    Thank you for the auspicious writeup. It in fact
    was once a leisure account it. Look complicated to far added agreeable from you!
    By the way, how can we communicate? part time jobs hired in 30 minutes https://parttimejobshiredin30minutes.wildapricot.org/

  • Avatar
    ps4 games this
    25/10/2021

    Hi to all, how is the whole thing, I think every one is getting more from this website, and your views are pleasant for new people.

  • Avatar
    ps4 games why
    26/10/2021

    I am regular visitor, how are you everybody? This piece of writing posted at this web page is actually fastidious.

  • Avatar
    asmr or
    12/11/2021

    Pretty section of content. I just stumbled upon your weblog and in accession capital to assert that I acquire actually enjoyed account your blog posts.
    Anyway I will be subscribing to your augment and even I achievement you access
    consistently fast.

  • … [Trackback]

    […] Read More on that Topic: bitcoinnews.com.br/carteirasbitcoin/falha-nas-carteiras-de-hardware-da-trezor-permite-que-hackers-acessem-dispositivo-em-apenas-15-minutos/ […]

  • Avatar
    Bart Stamdifer
    29/11/2021

    Hmm it appears like your blog ate my first comment (it was extremely long) so I guess I’ll just sum it up what I had written and say, I’m thoroughly enjoying your blog. I as well am an aspiring blog blogger but I’m still new to the whole thing. Do you have any tips and hints for novice blog writers? I’d genuinely appreciate it.|

Post a Comment

You don't have permission to register