TechFlow reports, July 10, according to The Block, Ledger's security research team Donjon disclosed that Tangem hardware wallet cards have a security vulnerability. After obtaining the physical card, attackers can use laser fault injection equipment to bypass recovery state verification in the firmware and reset the password, thereby controlling the wallet and initiating transactions. The study states that this vulnerability affects all Tangem cards currently in circulation, and since the product does not support firmware updates, it cannot be fixed via patches.
Tangem responded that the attack requires high-cost laboratory equipment, physical access to the card, and professional hardware security capabilities, and the actual risk for ordinary users is "almost negligible." Tangem also emphasized that the relevant research team belongs to competitor Ledger, and the public should view the relevant conclusions in light of this context.




