Op here, welcome.
As an electronic engineer, nothing can be done for already sold units.
The chip itself has a fault AND the software didn't crypt data on RAM.
So, else if you reprogram it, there is no way to fix already sold unit.
Internal acces not required but simpler than messing with USB power lines.
i just use a cheap offline machine and double encrypted usb sticks (blowfish and aes256)
why not more people just airgap ?
Because spending the coins is a more involved process than simply sticking your hardware wallet in.
But I agree, it's the better option.
All you have to do is turn on encryption, and nobody will be able to steal shit even if they were to do this attack.
It have to be tested.
This attack dumps the RAM, not the ROM.
So, data may be encrypted on ROM, if at start, you uncrypt everything and keep it in RAM, it's unsecure.
I really see no purpose in these, why don't people just keep their coins/wallet/keys on truecrypt encrypted USBs?
>truecrypt
Isnt that obselete ?, are you suppose to use veracrypt now
Doesn't make any sense. No security. You would need an offline PC either way to get similiar functionality.
>Dead
>Post medium FUD with wrong information
>Post about old issue that Trezor ALREADY fixed
>Doesn't go out and look at the information
>Just believes what he's told like a good goy
>Doesn't know that if you have a PW you're fine
>Doesn't know that if your wallet is hidden you're fine
>Coinbase
>PC
>Literally can't research on his own
>USB sticks
>truecrypt
The minority of Veeky Forums are alright but there is a majority of you ignorant fools. You people are going to run crypto straight into the ground if you don't get your shit together.
Fuck you I want to be spoonfed