TechFlow news, on October 18, the Safe team reviewed the security incident mentioned in Radiant Capital's post-mortem report, stating that the Safe {Wallet} frontend functioned properly, but external devices were compromised during the signing process, allowing attackers to replace transaction data and trick signers into approving malicious transactions. The Safe team believes this incident highlights the risks of blind signing—approving transactions without fully reviewing their details—especially when using hardware wallets. To address this issue, Safe recommends using multiple signing devices from different vendors (for example, a combination of Ledger and Trezor) and connecting these devices through trusted interfaces to enhance transaction visibility and security.
In addition, Safe is exploring technologies such as conditional signatures to provide more contextual information without compromising security. The Safe team is considering directly computing Ledger hashes within its interface so users can verify that the hash displayed on their hardware wallet matches the one shown in the interface. The team emphasizes that stakeholders across the ecosystem must collaborate to resolve the blind signing problem and commits to working with hardware wallet providers and the broader community to improve transaction and message signing processes.




