We would like to use this opportunity to address, clarify, and respond to the claims made by Ledger during the #MITBitcoinExpo. Too long, did not read Supply Chain Attack: Out-of-scope, affects all hardware in transport, no 100% solution, all companies have different methods to mitigate this Software Crappy Attack: Non-exploitable, patched Side Channel PIN Attack: Patched Side Channel Attack Scalar Multiplication: Non-exploitable, PIN required Surprise Concluding Attack: Not disclosed fully, implications for all hardware devices based on ST microchips, mitigated by passphrase Starting off, we would like to highlight ... (full story)