SQ Magazine

Smarter Insights for a Fast-Moving Digital World

Subscribe To Our Newsletter

Ledger Researchers Find Android Bug That Risks Crypto Wallets

Updated on:
Sofia Ramirez
Written By
Sofia Ramirez
Sofia Ramirez
Senior Tech Writer
Sofia Ramirez
Sofia Ramirez is a technology and cybersecurity writer at SQ Magazine. With a keen eye on emerging threats and innovations, she helps reader...
LATEST POSTS:
Technology Usage Statistics 2026: Data-Driven Insights and Trends
Big Data Analytics Statistics 2026: Growth Secrets
Signal and WhatsApp Users Targeted by Russian Hackers
Barry Elad
Reviewed By
Barry Elad
Barry Elad
Founder & Senior Journalist
Barry Elad
Barry Elad is a seasoned journalist and analyst specializing in finance, technology, AI, and founder of SQ Magazine. He explores the world o...
LATEST POSTS:
Nvidia Prepares NemoClaw to Power Enterprise AI Agents
Bhutan Moves $12 Million in Bitcoin from Primary Wallets
Anthropic Files Lawsuit After Pentagon AI Blacklisting
As Featured In
BluehostActive CampaignDesignrushSeeking AlphaResearch Com

A newly disclosed security flaw in some Android phones could allow attackers to extract crypto wallet keys and PIN codes in under a minute.

Quick Summary – TLDR:

  • Ledger’s security research team Donjon discovered a vulnerability in MediaTek powered Android devices.
  • Attackers with physical access could extract encryption keys through USB before the operating system loads.
  • The flaw may affect around 25 percent of Android smartphones using MediaTek chips and Trustonic Trusted Execution Environment.
  • Researchers warn the issue highlights the risks of storing crypto secrets directly on smartphones.

What Happened?

Security researchers at Ledger have revealed a vulnerability in certain Android devices powered by MediaTek processors that could allow attackers to retrieve sensitive crypto wallet data. The exploit can potentially expose device PIN codes and wallet seed phrases in under a minute if attackers gain physical access to the phone.

The flaw targets a weakness in the secure boot chain used in some MediaTek chipsets, which allows malicious actors to extract encryption keys before the Android operating system fully loads.

Ledger Researchers Identify Vulnerability in MediaTek Chips

The discovery was made by Donjon, Ledger’s internal team of security researchers and white hat hackers. During testing, the team found that an attacker could connect a compromised Android device to a computer through a USB connection before the operating system loads.

From there, the attacker could extract cryptographic keys used to protect Android’s full disk encryption. Once those keys are retrieved, the encrypted device storage can be decrypted offline.

According to the researchers, the entire process could take roughly 45 seconds, allowing attackers to gain access to sensitive information stored on the device.

In proof-of-concept testing, the exploit was able to retrieve wallet seed phrases and sensitive data from several well known cryptocurrency wallet applications, including:

With access to a wallet mnemonic or seed phrase, attackers can fully control a crypto wallet and transfer funds without needing the device again.

Millions of Android Devices Potentially Affected

Researchers estimate the vulnerability could impact about 25 percent of Android smartphones, particularly devices powered by MediaTek processors that rely on the Trustonic Trusted Execution Environment.

MediaTek chips are widely used in mid-range Android devices around the world, which means a large number of smartphones could theoretically be exposed if the flaw is not patched.

Ledger said the issue can be fixed through firmware and security updates, and users are encouraged to install patches released by MediaTek and smartphone manufacturers as soon as they become available.

Newsletter
Subscribe To Our Newsletter!

Be the first to get exclusive offers and the latest news.

Ledger Warns Smartphones Were Never Meant to Be Vaults

Charles Guillemet, Chief Technology Officer at Ledger, said the discovery reinforces long standing concerns about storing highly sensitive information directly on smartphones.

Ledger Chief Technology Officer Charles Guillemet said in the statement:

This research proves what we’ve long warned: smartphones were never designed to be vaults. While this can be patched, and we encourage all users to update with the latest security fixes provided by MediaTek and phone manufacturers, it shows the challenge of storing secrets on non secure devices. If your crypto sits on a phone, it’s only as safe as the weakest link in that phone’s hardware, firmware, or software.

Charles GuillemetChief Technology Officer – Ledger

The company said its goal in publishing the research was to give the industry time to address the flaw before it could be exploited at scale.

Crypto Wallet Attacks Are Increasing

The disclosure comes as attacks targeting cryptocurrency users continue to rise. Security reports show that wallet compromises are becoming a major source of crypto theft.

According to blockchain intelligence firm TRM Labs, infrastructure attacks such as private key theft, seed phrase theft, and front end compromises accounted for more than 80 percent of the 2.1 billion dollars stolen in the first half of 2025.

Data from Chainalysis also shows that losses from crypto theft exceeded 3.41 billion dollars in a single year, with personal wallet compromises becoming significantly more common.

These attacks represented 7.3 percent of stolen crypto value in 2022, but jumped to 44 percent by 2024, impacting more than 158000 individual cases.

The growing trend highlights how attackers are increasingly targeting individual wallet users rather than centralized platforms.

SQ Magazine Takeaway

I think this discovery sends a strong message to anyone storing crypto on their phone. Smartphones are convenient, but convenience often comes with security tradeoffs. If a flaw in hardware or firmware can expose wallet seed phrases in less than a minute, that is a serious risk.

In my view, this research reinforces why dedicated hardware wallets exist in the first place. Keeping private keys isolated from everyday devices like phones and laptops remains one of the safest ways to protect crypto assets.

Add SQ Magazine as a Preferred Source on Google for updates! Follow on Google News
Sofia Ramirez

Sofia Ramirez

Senior Tech Writer

Sofia Ramirez is a technology and cybersecurity writer at SQ Magazine. With a keen eye on emerging threats and innovations, she helps readers stay informed and secure in today’s fast-changing tech landscape. Passionate about making cybersecurity accessible, Sofia blends research-driven analysis with straightforward explanations; so whether you’re a tech professional or a curious reader, her work ensures you’re always one step ahead in the digital world.

Disclaimer: The content published on SQ Magazine is for informational and educational purposes only. Please verify details independently before making any important decisions based on our content.

Related Posts

OpenAI Brings Interactive Math and Science Visuals to ChatGPT
Artificial Intelligence

OpenAI Brings Interactive Math and Science Visuals to ChatGPT
Amazon Launches Health AI Assistant on Website and App
Artificial Intelligence

Amazon Launches Health AI Assistant on Website and App
ChatGPT May Soon Let Users Create AI Videos With Sora
Artificial Intelligence

ChatGPT May Soon Let Users Create AI Videos With Sora

Reader Interactions

Leave a Comment

Company
Discover
Categories
Internet
Gaming
Technology
Artificial Intelligence
Cybersecurity
Categories
Internet
Gaming
Technology
Artificial Intelligence
Cybersecurity
Newsletter

Subscribe To Our Newsletter!

Be the first to get exclusive offers and the latest news.

Newsletter

Subscribe To Our Newsletter!

Be the first to get exclusive offers and the latest news.