Ledger's security team disclosed a hardware vulnerability in the chip used in Trezor Safe 7; Trezor claims user funds are safe.

CoinFeed reported on June 3rd that, according to The Block, Ledger's Donjon security team, in a lab environment, bypassed the firmware verification mechanism of the TROPIC01 chip used in the Trezor Safe 7 using a sophisticated laser attack. This allows attackers to load unauthorized firmware even with physical possession of the device. Chip manufacturer Tropic Square further discovered an additional attack path in the chip's MAC-and-Destroy security mechanism used for PIN verification, but details will not be released until a reinforced version of the chip is released at the end of 2026.