Ledger joined forces with Intel

Ledger partners with Intel to deploy  SGX technology on ElectrumWallet and MyEtherWallet  
25 October 2017   298

The well-known manufacturer of hardware cryptowallets Ledger announced a partnership with Intel.

According to the press release, the companies will work on integrating the BOLOS operating system (Blockchain Open Ledger Operating System) used in the Ledger wallets into the Intel product line, where Software Guard Extensions (SGX) technology is used.

We have seen an increasing demand from the market for secure solutions to manage crypto assets over the past couple of years. Following the launch of a line of hardware wallets based on our operating system integrated in a secure chip, working with a leading player like Intel is a unique opportunity to keep providing our growing client base with innovative solutions for cryptocurrency and blockchain applications.

Eric Larchevêque

CEO, Ledger

The new development will be integrated into popular software cryptowallets, including Electrum and MyEtherWallet. The solution from Intel will protect important data from unauthorized use with the so-called SGX-enclaves, which, in particular, will store private keys and sign transactions. 

Ledger releases a security update for its wallet

The new version addresses a “man-in-the-middle” type of attack
07 February 2018   980

Ledger Wallet Bitcoin Chrome application has been recently updated to include a new security feature - verification of the reception address directly on a hardware device. This patch fixes a specific issue that has gained weight among the community.

A malware has been recently announced that is potentially capable of infecting the Ledger Chrome application along with the whole user’s system. Thus, theoretically the attacker could replace the ‘receive’ address displayed on the screen of the application on the infected system with the attacker’s address. This type of an attack is called “man-in-the-middle”.

Now the users can easily verify the received address on their device. Additionally, Eric Larcheveque, CEO of Ledger, explained the 3 important steps the company is making in terms of improving the security: software updates, upgraded Bug Bounty program and prevention by working on developing resources and materials to help users to better understand the threats.

Security is an arms race. We’re in it for the long haul and are prepared for it. At Ledger, we take our mission seriously and that mission is to protect you


Eric Larcheveque

Ledger CEO

Reddit users were mainly puzzled with the update:

u/cryptogalaxy said “I just saw the email and I'm not sure I understand. They no longer display your receiving address on the computer but instead only display it on your device so you can no longer copy paste your address? That could cause typing errors when you want to transfer from an exchange to your wallet as you have to manually type out the whole address each time. Did I misunderstand or is this their so called "upgrade"?”

u/adavidmiller said “I don't get it, didn't you always have to confirm the receiving address manually on the ledger itself?”

u/advanceb said “If I have a ledger nano S how do I update this? Do I still keep the same private keys etc?”

u/Niros1 said “Does this issue also relevant for MEW? Does MEW generate the addresses with JS?”