Ledger explains its firmware following deleted tweet issue
According to the creators of the Ledger, no unauthorised programmes may access the private keys of its users.
After deleting a problematic tweet on May 17, crypto hardware wallet vendor Ledger elaborated on the functionality of their firmware on May 18. The deleted post claimed it was “possible” for Ledger to create software that could recover customers’ private keys; Ledger claims the tweet was authored by a customer care employee.
That is, the operating system shouldn’t steal the private key from the device without the user’s knowledge, but Guillemet did say that utilising a Ledger does involve “a minimal amount of trust.”
Whether you were aware of it or not, you have always put your faith in Ledger and its promise to never use such firmware.
The message caused a torrent of criticism on the social media platform, with many users claiming the corporation exaggerated the safety of its digital wallet. A reported November Ledger article said, “A firmware update cannot extract the private keys from the Secure Element,” which was used as evidence that the corporation was inconsistent.
The deleted tweet didn’t start the uproar; on May 16, the business announced a new service called “Ledger Recover” that lets customers create three copies of their secret recovery phrase and store them with separate data custody providers. This new functionality was the impetus for the deleted tweet.
The team makes sure that applications are safe and secure before allowing them to be used with the Ledger Manager programme.
Ledger claims that even once an app has been given the green light, the operating system would not let it utilise the private key for a network it wasn’t designed for.