Thomas Coudray (@[email protected])

🚨 Shai-Hulud 2.0: A new wave of npm supply-chain attacks targeting major packages (Zapier, ENS, PostHog, Postman & more) is ongoing. Attackers inject malicious code into published versions, triggering during pre-install to gain code execution and exfiltrate environment vars, API keys, Git creds, and CI/CD secrets, then quietly exfiltrate everything. If you use affected packages: PLEASE check this carefully: consider your credentials and secrets compromised, audit your infrastructure and rotate your credz. If you don't have close CI monitoring, you might consider shutting down your systems! This attack doesn't seem to target crypto in particular, but could be an efficent way to exploit exfiltrated secrets. Stay safe. https://t.co/vEuRluh4tv

In my view, upgradability is best practice, security is never static, it’s a continuous journey where you always need to raise the bar. What we recommend for Tangem users: For best security practices, we strongly advise using very long passwords with letters, numbers & symbols.

Most individuals complaining about Ledger Recover evidently lack understanding of wallet security or, indeed, security in the real-world in general. The solution, if implemented properly, will be a step in the right direction. When I say "in the right direction", I imply that it would meet the expectations of 95% of humanity, who already place faith in ID-based recovery for their bank accounts, loans, credits, and more. After all, KYC procedures at all leading financial institutions utilize similar mechanisms. We should not be in a rush to reinvent the wheel until we have more seamless tools, primed and ready for wider adoption. When I say "if implemented properly", I'm referring to the numerous methods to verify the authenticity of an ID. I honestly presume Ledger will uphold rigorous standards in this regard, mirroring the protocols employed by your bank today. Ultimately, the safety of your crypto assets and NFTs is a function of the hardware and software used. The hardware, designed, created, and shipped by scores of companies, can be tampered with by any employee along the supply chain. Similarly, the software, provided by the wallet provider, maintained by dependency libraries, and hosted by infrastructure providers, can also be compromised. Rejecting this feature because it necessitates collusion among three disparate entities to retrieve an encrypted recovery seed is, in most instances, irrational. The community should instead demand transparency concerning the measures and controls in place to segregate these parties, akin to the call for transparency regarding Google's Titan security chip supply chain. To hack an institution engaged in crypto custody, potentially dealing with billions of dollars, would likely require collusion among 3-5 employees. And remember, orchestrating such an act across three separate companies is exponentially more challenging. This entire discourse boils down to checks and balances and the implementation of layered defenses. I am a staunch advocate for creating a web3 that initially targets the low hanging fruits (such as people losing their keys or falling victim to scams) rather than chasing after unlikely scenarios that could detrimentally affect the user experience, thus potentially prompting users to ignore safety features altogether.