Kaspersky Lab speaks about the emergence of fake hardware wallets
Experts urged to buy devices only from trusted dealers
15.05.2023 - 16:00
344
3 min
0
What’s new? Kaspersky Lab described a case of hardware cryptocurrency wallet forgery, from which attackers withdrew 1,33 BTC ($29 585 at the time of research). It is reported that on the day of the theft, the owner did not make any transactions, and the device was disconnected from the Internet and was lying in a safe. Upon opening the wallet for analysis, experts found signs of modification. They concluded that the victim had bought a device that had already been hacked, and urged to buy only from trusted dealers.
How was the wallet changed? Kaspersky Lab found that instead of ultrasonic welding the wallet halves were filled with glue and fastened with double-sided adhesive tape. Also, another microcontroller with modified firmware and bootloader was installed instead of the original one. In this, at the time of purchase factory packaging and holographic stickers looked intact and did not arouse the victim’s suspicions.
The experts found out that the scammers had made three modifications to the hardware wallet: the control of security mechanisms was removed and at the stage of initialization or upon device reset the randomly generated seed phrase was replaced by one of 20 pre-created and saved in the fraudulent firmware. The third modification was that if the owner set an additional password to protect the master key, only the first character was used. Thus, attackers had to try a total of 1280 variants in order to find a password to a particular fake wallet.
Как надежно хранить криптовалюту. Выбираем лучшие криптокошельки 2023 года
Подробно разбираем все типы криптовалютных кошельков, а также выбираем лучшие хранилища для цифровых активов, исходя из потребностей каждого отдельного пользователя
Stanislav Golovanov, a cybersecurity expert at Kaspersky Lab, noted that although hardware wallets are considered one of the safest ways to store cryptocurrency, attackers have found a way to withdraw funds from them — selling infected or fake devices. He stressed that such attacks can be avoided by buying devices only from official and trusted sellers to minimize risks.
Earlier, Kaspersky Lab described a new fraud scheme in which users were offered to invest in “Russian state cryptocurrency” on behalf of some regulator.
Useful material?
Incidents
Roger Ver has been accused of not paying taxes
May 1, 2024
Mining
After the publication of the financial report, the company’s shares added 5%
Apr 30, 2024
Market
The commission had previously warned the developer of potential enforcement actions
Apr 29, 2024
Market
Funds can be seized by law enforcers due to links to illegal activity
Apr 26, 2024
Market
Tether Finance division will be responsible for the issuance and redemption of USDT stablecoins
Apr 18, 2024
Trends
The first project introduced on the platform will be BounceBit (BB)
Apr 18, 2024