Ledger researchers reported a method to bypass firmware signature verification in the TROPIC01 security chip used by Trezor Safe 7.

Vulnerability details

According to Ledger, the technique allows an attacker to circumvent checks that validate firmware authenticity inside the TROPIC01 component of the device.

Attack prerequisites and limitations

Successful exploitation, Ledger notes, requires physical access to the target device, specialized and costly laboratory equipment, and advanced technical expertise.

The researchers were not able to extract users’ private keys or other sensitive wallet secrets during their assessment.

Vendor statement and protection layers

Trezor emphasized that TROPIC01 constitutes only one of the product’s three protection layers, and that customer funds remain protected by the device’s overall security design.

Mitigation and next steps

The manufacturer is preparing an updated hardware revision intended to address the identified attack vector at the chip level and prevent similar bypasses.

Users and custodians are advised to follow official vendor guidance for updates and to verify device provenance when possible.