The world's first secure touchscreen hardware wallet.
Complete solutions for secure signing, key storage, and backups.
Engineered and manufactured in the USA.
@benjaminion_xyz@gregthegreek@infinex That's something we could help them address with a few lines of code!
We'll try and connect and see what we can cook up.
NEW: ABI calldata decoder for @gridplus Lattice1.
Ambire now fetches ABI data from block explorers before signing and passes it as a decoder buffer to the device.
It enables Lattice 1 firmware to display the function name and decoded parameters instead of raw data.
@cashpredkurvama@Sakrexer The attack surface is actually more limited with the Lattice1: there are isolated communication and secure environments in the same enclosure.
It also prevents against key extraction when the attacker has physical possession, not just remote attacks.
https://t.co/pvPspFVZIb
@Sakrexer Appreciate it!
We've got a big list of user feedback driven improvements coming your way this summer so we hope the experience only gets better for you from here on out!
Upgrade your hardware security this #WorldBackupDay.
Save $70 on the Lattice1 and get 7 FREE SafeCards. Each swappable card backs up and signs for a different seed phrase. That's 8 wallets for $329!
🗓️7 days only
🌏Free shipping
🤑No code needed
Only @ https://t.co/KLT2Tors70
Another supply-chain compromise is unfolding tonight, this time affecting Axios on npm.
If Axios is in your stack, audit your lockfiles now for [email protected], [email protected], and [email protected]. Read the thread below and pin or roll back immediately if found.
🚨 CRITICAL: Active supply chain attack on axios -- one of npm's most depended-on packages.
The latest [email protected] now pulls in [email protected], a package that did not exist before today. This is a live compromise.
This is textbook supply chain installer malware. axios has 100M+ weekly downloads. Every npm install pulling the latest version is potentially compromised right now.
Socket AI analysis confirms this is malware. plain-crypto-js is an obfuscated dropper/loader that:
• Deobfuscates embedded payloads and operational strings at runtime
• Dynamically loads fs, os, and execSync to evade static analysis
• Executes decoded shell commands
• Stages and copies payload files into OS temp and Windows ProgramData directories
• Deletes and renames artifacts post-execution to destroy forensic evidence
If you use axios, pin your version immediately and audit your lockfiles. Do not upgrade.
The #WorldBackupDay (March 31) is a reminder that backing up data is crucial. Beyond crypto, it’s about protecting your digital keys, files and priceless memories.
Our hardware is resilient - make sure your backup strategy is too.
👀Stay tuned for our special offer on March 31!
Today's AI tooling often sits on machines also touching money, infra, and sensitive credentials.
If your computer holds keys, everything on it impacts you crypto security.
Detail and sources:
https://t.co/MHE8wbafuA
https://t.co/rfaLuBYrZ9
https://t.co/w4534Ar6Xj
4/4
🚨Security alert: widely used AI software LiteLLM, was hit by a supply chain attack.
The malicious code steals crypto wallet data, including Ethereum keystores, plus API keys, cloud credentials, SSH keys, and other sensitive files.
Installation alone can trigger it. 1/4
If LiteLLM 1.82.7 or 1.82.8 was installed on any system, treat that system as compromised. If it held private keys, move assets immediately.
Rotate credentials, SSH keys, and cloud tokens on the affected machine. Downgrade to 1.82.6 or remove it. 3/4
A seed phrase is not a password you can reset.
If someone gets those 12–24 words, they can recover your wallet and move your funds. No legitimate service will ever ask for it.
Store it securely.
Keep it offline.
Treat it like the most sensitive credential you have.
Stop relying on words scribbled on a piece of paper - your wallet backup should be just as secure as the wallet itself.
GridPlus SafeCards are the safest way to store your seed phrase thanks to physical unclonable function (PUF) chips that provide the strongest secret storage mechanism available.
Gas abstraction is currently available for hot wallet and @gridplus hardware users.
The work is underway to enable these amazing features for all users, as @Ivshti recently highlighted on the community call.
We're looking forward to @Trezor@Ledger and other hardware wallets supporting EIP-7702 💜
✨LUNAR NEW YEAR SALE IS LIVE 🧧
To celebrate new beginnings in the Year of the Fire Horse, we’re dropping a $100 discount on the Lattice1.
🎁 Each Lattice1 pack includes 3 free SafeCards.
⏳ 7 days only.
Shop at https://t.co/KLT2TorZWy. No code needed.
Tired of clicking through tiny screens and still not being sure what you're actually signing? 🧐
Put the magnifying glass away. With the Lattice1's 5-inch touchscreen, you get full transaction details on one screen.
Security, made simple.
✨LUNAR NEW YEAR SALE IS LIVE 🧧
To celebrate new beginnings in the Year of the Fire Horse, we’re dropping a $100 discount on the Lattice1.
🎁 Each Lattice1 pack includes 3 free SafeCards.
⏳ 7 days only.
Shop at https://t.co/KLT2TorZWy. No code needed.