Posts

• Oct 20, 2022

  CoinStats users beware - coins sent to your watch-only wallet are not where you think they are

• Feb 9, 2021

  Remote multisig theft attack on the Coldcard hardware wallet

• Nov 24, 2020

  Coldcard isolation bypass

• Nov 5, 2020

  How nearly all personal hardware wallet multisig setups are insecure

• Oct 16, 2020

  A pitfall of Rust's move/copy/drop semantics and zeroing data

• Sep 2, 2020

  A ransom attack on Trezor's and KeepKey's passphrase handling

• May 5, 2020

  Embedding structs and interfaces break modularity and semantic versioning in Go

• Nov 18, 2019

  A theft attack on Trezor Model T

subscribe via RSS