Ledger Announces New Nano S Firmware - Researcher Says Update Now

Ledger Announces New Nano S Firmware – Researcher Says Update Now

Cryptocurrency hardware wallet manufacturer Ledger just announced the new firmware update 1.4.1 for their popular Ledger Nano S wallet. The update further optimizes various user experience and security elements on the device. In kind, one researcher is sounding the alarm, arguing users’ funds are vulnerable unless they switch to 1.4.1. 

Also see: Bank of Amazon? Online Retail Giant Considers Move Into Banking Services

Subscribe to the Bitsonline YouTube channel for more great interviews featuring industry insiders & experts

Toward Better UX and Security

As the hardware wallet wars continue to heat up, entrenched wallet powerhouses like TREZOR and Ledger are going to have to stay on their toes. And Ledger’s seemingly doing just that with the release of their new 1.4.1 firmware update.

The update hones in on a slew of improvements for the Nano S, such as:

  • Confirmations now required for all 24 recovery words
  • New screen-lock (hold both device buttons down for three seconds)
  • Concurrent app downloads raised to 18
  • Cache optimizations
  • Ledger OS (BOLOS) modified
  • 12 new Elliptic Curves added to device’s cryptographic support
Ledger
Some of the new security tweaks.

Ledger has recommended all Nano S users update their devices with the new firmware. Instructions on how to do so can be found here.

Researcher Who Found Flaw Urges Users to Act

Toward the conclusion of their firmware announcement, Ledger said “we would like to congratulate two of our users, who successfully found bounties in our firmware 1.3. Though these issues were not critical and apply only under quite uncommon conditions, they are now solved in [1.4].”

But Saleem Rashid — a researcher who describes himself as one of the two who discovered the 1.3 flaws — alleged on Twitter that the company was gravely misrepresenting the severity of the situation:

If Rashid’s right, then all Nano S users should immediately update to the new firmware 1.4.1. Bitsonline will keep you updated on any developments in the situation going forward.

What’s your take? Are you worried about hardware wallet vulnerabilities? Sound off in the comments below. 


Images via Ledger, Medium

Related News