Donjon's Trezor Safe 3 evaluation

Reportado em November 12, 2024

Ledger Donjon evaluated our Trezor Safe Family and successfully reused a previously known attack to demonstrate how some countermeasures against supply chain attacks in Trezor Safe 3 can be bypassed. Trezor Safe 5 is not affected because it uses a more recent microcontroller designed to be more resilient to similar attacks.

Reportado por Ledger Donjon

Nosso post no blog

Trezor Safe 3

Vulnerabilidades resolvidas

Reportado pela comunidade. Investigado. Resolvido. Porque sua segurança nunca é opcional.

Open redirect on affiliate page
20 de março de 2026
Biometric Verification bypassed in Trezor Suite with external monitor
9 de março de 2026
Insufficient entropy on Trezor Model One with 12/18 words
6 de fevereiro de 2026
Bug in multisig verification
10 de janeiro de 2026
Inability to cancel certain flows on pre-production firmware
31 de outubro de 2025
Fix side-channel in BIP-39 mnemonic processing when unlocked
24 de setembro de 2025