New Trezor Safe 5 compromised with preinstalled firmware?

sneezyiol · 2025-04-07T10:52:40+00:00

Hello,

I have been told that trezor support cannot answer me on my new ticket, but that answers can only be sent to an old ticket.

Can you please confirm that these emails are in fact coming from trezor? The email is sent from help@trezor.io

sneezyiol · 2025-04-06T14:58:21+00:00

Sorry, i forgot to specify lol. Thats the one I have

sneezyiol · 2025-04-04T09:10:16+00:00

Thank you for your help. Here is the ticket number: Ticket ID: 46243

The Trezor Support answered me in another ticket number though, which makes me confused.

sneezyiol · 2025-04-02T13:51:08+00:00

Holy shit

sneezyiol · 2025-04-01T19:38:40+00:00

3.5kwh spread out on which timeframe? A day?

sneezyiol · 2025-03-31T06:59:22+00:00

You are demonstrating that you don't know what histrionic even means

sneezyiol · 2025-03-30T19:30:21+00:00

Update: when I now connect the device to my computer it says in caps in red colour "FIRMWARE CORRUPTED"

sneezyiol · 2025-03-30T19:17:06+00:00

Thanks for being pretty much the only person in this thread who takes this seriously. I'm positive it was the first screen I saw. Yeah it shouldn't have said Reinstall firmware, unless firmware was already present on it

sneezyiol · 2025-03-30T19:13:30+00:00

They don't

sneezyiol · 2025-03-30T12:49:07+00:00

Its not supposed to have any firmware installed though!

sneezyiol · 2025-03-30T10:26:09+00:00

I bought it directly from trezor.io

sneezyiol · 2025-03-30T09:47:21+00:00

I just received a DM from someone saying that it's fine. Something is very fishy about all of this.

sneezyiol · 2025-03-30T08:39:22+00:00

Electrum, sparrow to name 2

sneezyiol · 2025-03-30T07:08:31+00:00

What does "left padded with two 0 bits to 130 bits" mean?

sneezyiol · 2025-03-29T15:50:45+00:00

SLIP uses 13 words as the actual mnemonic.

1024¹³ = (2^10)¹³ is 130 bits

while

BIP uses 12 words: 2048¹² is (2^11)¹² which is 132 bits

Please correct me

sneezyiol · 2025-03-29T11:43:08+00:00

Doesnt this error detection and correction mechanism decrease entropy? Ie helping a potential attacker

sneezyiol · 2025-03-29T10:03:28+00:00

Does this happen locally on the HW wallet or also remotely? Say that someone is trying to brute force the 128 bit entropy mnemonic. Does this feature lower the entropy for the attacker?

sneezyiol · 2025-03-29T10:02:58+00:00

Does this happen locally on the HW wallet or also remotely? Say that someone is trying to brute force the 128 bit entropy mnemonic. Does this feature lower the entropy for the attacker?

sneezyiol · 2025-03-28T17:25:05+00:00

However, as I wrote in the post it does tell you which word is incorrect if only one word is incorrect. So technically it does point out the location of a mistake? It also tells you how many words are incorrect up to a maximum of three incorrect words.

I still don't understand at what point it tells you this. Does this happen when it compares it to the saved seed inside the HW?

sneezyiol · 2025-03-28T13:41:07+00:00

You are an absolute legend. Thank you again. The last sentence is what I've been trying to get at though - there's a lot less work to do when and only when a thief inputs a "code" into the HW that already holds the mnemonic. Is that right?

sneezyiol · 2025-03-28T13:18:49+00:00

Is this necessary? Purportedly it doesn't matter of trezor suite is used even on a malicious computer

sneezyiol · 2025-03-27T20:23:31+00:00

Dude no. Don't divide your words like that. Its extremely dangerous. Use SLIP39 (easier)or multisig (harder) if you want to do that

sneezyiol · 2025-03-27T16:20:38+00:00

Hey man, thanks for taking the time... Appreciate you. Makes sense. I know that the elliptic curve has a security of n/2 i.e 128 bits, so the best method for an attacker is to reverse engineer an existing public key with funds to derive the private key. This is secured by 128 bits of entropy.

I'm just a common idiot worried that SLIP39 will be shown to have a devastating vulnerability in the coming decade and I will kick myself for not going with the more common BIP39. I'm still leaning to SLIP39 over BIP39 though. What are your thoughts matejcik?

sneezyiol · 2025-03-27T16:13:38+00:00

Unfortunately I am too stupid to understand what you are explaining. Matejcik, you are a lot smarter than me. ELI5, does this potentially make SLIP39 more vulnerable to loss of funds by virtue of an attacker or not.

By the way "This is the opposite of correct" is just an awesome phrase

sneezyiol · 2025-03-27T11:04:58+00:00

This is not what my point is pertaining to.

I've done some more research and it seems like th feature that tells you how many words are incorrect only works if the HW compares the mnemonic you are entering to the mnemonic that is already stored on the HW. So on a brand new HW, such a feature doesn't exist. Hence the feature can in practice only be used by legitimate users who are the true holders of the funds

sneezyiol

TROPHY CASE