🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

The video of the presentation on the hardware vulnerability identification (T-test) and exploitation (double laser fault injection) is finally out! You can view it there: youtube.com/watch?v=b1haeC…

Olivier will be present in Hardwear.io next week to present his huge work on the ATECC608B: a Triple Exploit Chain done with our laser benches in the Ledger Donjon! #hw_ioNL2023 #hardwaresecurity #Conference

Ever wondered about the basics of side-channel attacks? In the late MISCmag edition (in French), you can learn the underlying principles of such threats, and discover how to use our 🌈 Rainbow tool to assess the security of your code! github.com/Ledger-Donjon/…

📢Introducing our next Web3 Carnival speaker🎤 📷Join us as, Charles Guillemet , CTO: Ledger , takes the stage to share their visionary perspectives and actionable tips!✨ Book your tickets Now: web3carnival.world/buy-ticket #web3carnival #Ledger #Crypto #NFT #web3 #w3c 🚀

Olivier’s talk on Triple Exploit Chain With Laser Fault Injection on the ATECC608B is available! Check it out: youtube.com/watch?v=Hd_K2y… #hw_ioNL2023 hardwear.io

We are 100% focused on following up to last week’s security incident, making sure incidents like this are prevented in the future, and that the ecosystem remains safe. We are aware of approximately $600k in assets impacted, stolen from users blind signing on EVM DApps. Ledger

Smart contracts are an integral part of the crypto ecosystem - but interacting with them does involve some risk, as you could accidentally sign a malicious contract. 🚨 Not sure what red flags you should be looking out for? Ledger Academy has you covered: ledger.com/academy/smart-…

"There is no security on this earth; there is only opportunity." But, opportunity to improve security exists, and I'm excited to share one with you. 🔥🔥 🛡️ Ledger Donjon 🛡️ is opening one (and only one) position for an 🔰 internship 🔰 in our security software team. If you

Fault Injection (FI) and Side-Channel (SC) attacks targeting ESP32 SoC eFUSE encryption keys extraction Great research work by Ledger Donjon eprint.iacr.org/2023/090.pdf #espressif #cybersecurity

We are thrilled to have open-sourced cargo-checkct, to help bridge the gap between academic research and industry practices for the early detection of timing vulnerabilities in cryptography libraries. Read more about it in our blog post. ledger.com/blog-cargo-che…

🚀 Exciting news! The Ledger Donjon team proudly presents cargo-checkct, our new open-source tool designed to defend against timing attacks. 🛡️ 📖 In our latest blog post, we explore: The concept of timing attacks and their impact Why timing vulnerabilities in cryptography

During next @hardware_io conference, Ledger Donjon will showcase tools developed and used for Fault Injection Attacks! Pass by in the Village to see a part of our Tool Suite: Scaffold, Silicon Toaster, Laser Studio, QuickLog, Curmea… operating on our transportable laser bench!

This week the Donjon brought its transportable laser bench to the jaif.io/2024 conference in Rennes by train 🚄. A proof that a functional Laser Fault Injection bench is not that impossible to see anywhere. Next step in the Village hardwear.io NL 2024 conference!

Last week, the Ledger Donjon team joined the NoLimitSecu 🇫🇷 podcast to share Ledger’s vision on wallet security in episode #475, titled 'Sécurité des wallets'. For English speakers, you can use auto-generated subtitles on youtube.com/watch?v=2BpI6i… #ledger #donjon #CyberSecurity

Last week at hardwear.io NL 2024, we showcased some of our attack tools we use in the Donjon, and a live demo of a double fault injection ⚡️⚡️ with the transportable laser bench! Our tools are open-source and presented on our webpage: donjon.ledger.com/tools-suite/

DevOps practices are all well and good, but beware of the configuration of the tools that access your production. Find out more about Argo CD misconfiguration in this new blog post. ⏬ ledger.com/argo-cd-securi… #argocd #security #devops #devsecops

In this blog post, I share some dangerous practices in deploying Argo CD🦑. Enjoy reading! ledger.com/argo-cd-securi…

Donjon is at Black Hat Asia this week! Karim (Karim M. Abdellatif ) is presenting his research on using deep learning attribution methods for fault injection attacks. Don't miss his presentation: blackhat.com/asia-25/briefi…

Security leaves no room for error, a single variable mishandled, and the entire security model can collapse. We're excited to share an illustration of this through our recent research on the Tangem card. Big thanks to the Tangem team for their responsiveness and collaboration!