Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched
Ledger’s Donjon team demonstrated a laser fault injection attack that resets Tangem wallet passwords without requiring the old PIN or a backup card. The attack exploits a vulnerability in the password reset logic by disrupting the chip’s circuitry during a specific verification check, forcing the card into recovery mode. Because Tangem cards lack firmware update capabilities, this flaw exists in all existing units and cannot be patched, representing a permanent design weakness. While the attack
Analysis
TL;DR
- Ledger’s Donjon team demonstrated a laser fault injection attack that resets Tangem wallet passwords without requiring the old PIN or a backup card.
- The attack exploits a vulnerability in the password reset logic by disrupting the chip’s circuitry during a specific verification check, forcing the card into recovery mode.
- Because Tangem cards lack firmware update capabilities, this flaw exists in all existing units and cannot be patched, representing a permanent design weakness.
- While the attack requires physical possession, invasive card destruction, and a ~$250,000 lab setup, it poses a critical risk for lost or stolen high-value cards.
- Tangem argues the practical risk is negligible due to the high cost and inability to identify card value beforehand, but researchers maintain the security flaw is real and unfixable.
Why It Matters
This incident highlights the inherent trade-offs in immutable hardware security designs; while Tangem’s "no-update" policy prevents remote tampering, it also eliminates the ability to patch discovered vulnerabilities. For AI and cybersecurity practitioners, it underscores that hardware certification levels (like EAL6+) do not guarantee immunity from sophisticated physical attacks like laser fault injection, especially when application-layer logic contains flaws. It serves as a cautionary tale for hardware wallet manufacturers regarding the necessity of robust, updatable security architectures or redundant verification mechanisms.
Technical Details
- Attack Vector: Laser fault injection targeting the Samsung S3D232A secure element chip inside the Tangem card.
- Mechanism: A precisely timed laser pulse disrupts the chip’s circuitry during the execution of the password reset check, causing the card to falsely believe it is in recovery mode and accept a new PIN without validating the old one.
- Hardware Constraints: The attack requires opening the card, exposing the chip, and using specialized equipment in a lab environment costing approximately $250,000.
- Permanence: The vulnerability resides in the firmware, which cannot be updated because Tangem cards are designed as immutable hardware devices.
- Comparison: Similar techniques were previously used on older Trezor models with standard microcontrollers, but Tangem’s secure element raises the barrier to entry significantly, though it does not eliminate the risk.
Industry Insight
- Design Philosophy Review: Manufacturers must reconsider the "immutable hardware" value proposition; while it mitigates remote risks, it creates permanent liabilities for physical vulnerabilities. Future designs should incorporate mechanisms for secure, air-gapped updates or multi-factor physical verification.
- Physical Security Standards: High-grade certifications like EAL6+ are insufficient on their own. Security audits must include rigorous side-channel and fault injection testing, particularly for critical logic paths like authentication and recovery.
- User Risk Management: Users holding significant assets on immutable hardware wallets should prioritize keeping physical cards in secure locations. If a card is lost or stolen, immediate fund migration via secondary recovery methods is essential, as the password alone no longer guarantees security.
Disclaimer: The above content is generated by AI and is for reference only.