KeyBleed: Attacking the OneKey Mini Cryptocurrency Wallet - Hack In The Box 2023

Explore the vulnerabilities in cryptocurrency hardware wallets, particularly those utilizing Secure Elements, in this 57-minute conference talk from the Hack In The Box Security Conference. Delve into the intricacies of wallet security, examining how data transfer between the Secure Element and the main microprocessor can introduce exploitable conditions. Learn about previous attacks on cryptocurrency wallets, issues with code reuse, and witness a live demonstration of a specific vulnerability in the OneKey Mini that allows for 100% reliable seed recovery in under one second. Gain insights from Eric Michaud, an expert in physical and cybersecurity with over 18 years of experience, as he shares his knowledge on cryptocurrency wallet security and demonstrates the importance of thorough security analysis in the rapidly evolving world of digital assets.