Trezor's Bridge New Version Released

Updates are being introduced as part of the gradual transition of the service from Google Chrome extensions to full-fledged software
20 February 2018   469

Developers of the Trezor hardware wallet presented a new version of the Bridge software that provides a connection between the Internet browser and the wallet itself. According to them, Bridge application was rewritten from scratch on the basis of modernized program code, which will make the connection "faster, safer and more reliable".

Updates are being introduced as part of the gradual transition of the service from Google Chrome extensions to full-fledged software. Existing users can still use the browser extension or the previous version of Bridge. At this stage, the transition to new software will be carried out exclusively on a voluntary basis.

New users will be offered two options - to install a new version of Bridge or the extension of Google Chrome, but in Trezor recommend the first option. As soon as the transition becomes mandatory, all users will be notified.

In the coming weeks, the next stage of the process will begin: in the new version of the Trezor Wallet software, the option of expanding Google Chrome will be absent. Only those who installed it earlier can use it, however Trezor will continue to remind such users about the possibility of installing the Bridge software.

Trezor to Undergo Fishing Attack

Trezor wallet team asks users to be exteme caution
02 July 2018   303

According to the blog of developers of the hardware wllet Trezor, their service has recently undergone a phishing attack. The project team stated that it received many complaints about the incorrect Secure Sockets Layer (SSL) certificate.

The number of warnings about the incorrect certificate has increased due to the increasing number of phishing attacks on the site. The vectors of the attack are reportedly the so-called "poisoning of the DNS server" and "BGP-interception".

Poisoning a DNS server is an attack that uses some DNS vulnerabilities. It allows the attacker to redirect traffic from legitimate servers to fake ones. This exploit was used, for example, to attack the "Great Chinese Firewall" in 2010.

BGP interception (also known as "prefix intercept") is an attack that consumes IP address groups and is performed by corrupting the routing Internet tables that the BGP protocol operates on.

As a result of the attack, the fake Trezor wallet site showed a warning message asking the user to restore the seed-phrase (an access key consisting of 12-24 "simple and memorable" words). According to Trezor, this was already the "second alarm bell", because the warning message was written with errors.

The third red flag was the method of recovery (seed check) — the fake site forced users to enter both the order number as well as the seed word into the computer.

Trezor's Blog

Next, the team warned users about the security measures that must be taken to protect themselves from this attack. It stressed that users should never enter their seed-phrases into the computer - this should be done only in the Trezor device. In addition, according to Trezor, the user should make sure that there is a "Protected" in the address bar of his browser.

They also noted that the fake wallet had already been blocked by the hosting provider, but they asked users to remain vigilant and inform the Trezor team about suspicious sites.