On June 3, 2026, Trezor and Tropic Sq. publicly introduced the invention of a vulnerability within the TROPIC01 chip, used within the Trezor Protected 7 {hardware} pockets. This disclosure was made in collaboration with the Ledger Donjon analysis crew, underscoring the businesses’ dedication to transparency and consumer safety.
Regardless of the invention, Trezor Protected 7 customers’ funds stay secure and no motion is required from machine homeowners. The vulnerability impacts solely one of many three bodily safety layers current within the machine, confirming the effectiveness of the layered structure adopted by Trezor.
Particulars of the vulnerability: a classy and impractical assault
The context of the invention
After the launch of the primary TROPIC01 chip in mid-2025, Tropic Sq. concerned the Ledger Donjon safety crew to topic the chip to an impartial analysis. In January 2026, Ledger Donjon knowledgeable Tropic Sq. that it had efficiently carried out a Laser Fault Injection assault below extremely particular laboratory circumstances, managing to bypass the firmware signature verification.
Based mostly on this discovery, Tropic Sq.’s engineering crew recognized an extra complicated technique to use the vulnerability, which permits the extraction of one other secret associated to the PIN capabilities of the TROPIC01 chip. All companions, together with Trezor, have been knowledgeable and the vulnerability was made public in a coordinated method.
Restricted influence: the multi-layer safety of Trezor Protected 7
The vulnerability impacts solely the TROPIC01 chip, one of many three bodily and impartial safety layers of the Trezor Protected 7. Compromising solely TROPIC01 doesn’t enable entry to the PIN, which represents the ultimate barrier defending customers’ funds. As well as, non-public keys and the pockets backup aren’t saved on the TROPIC01 chip, however are distributed throughout totally different elements, thereby eliminating any single level of failure.
The described assault requires bodily possession of the machine, specialised laboratory tools, and high-level experience. There is no such thing as a proof of real-world exploitation of this vulnerability, and Trezor Protected 7 has by no means been breached.
What this implies for Trezor Protected 7 customers
No motion required: safety stays intact
For customers, the invention doesn’t entail any sensible threat nor does it require any motion. The vulnerability is on the {hardware} stage and can’t be mounted through distant firmware updates. Nevertheless, thanks exactly to the machine’s layered design, a flaw in a single chip doesn’t compromise total safety.
In the actual world, phishing stays the principle menace for individuals who self-custody their belongings. A vulnerability that requires bodily entry and superior instruments doesn’t symbolize a concrete threat for the overwhelming majority of customers.
Phrases from Matej Žák, CEO of Trezor
Matej Žák, CEO of Trezor, emphasised that the choice to combine TROPIC01 — an open-source and verifiable chip — was made exactly to make sure most transparency and safety. The machine was designed with a number of impartial safety layers, guaranteeing that no single element can symbolize a vital level of vulnerability.
Žák highlighted the significance of coordinated disclosure and collaboration between firms to strengthen the complete sector. “The PIN, backup, and keys to customers’ funds are by no means entrusted to a single chip. That is the results of a deliberate and clear design,” he acknowledged.
Why Trezor chooses transparency
An open-source safety mannequin
Trezor selected to publish this disclosure not as a result of funds are in danger, however to advertise a safety mannequin primarily based on transparency. The corporate rejects the concept that safety comes from obscurity: closed programs and chips protected by NDAs disguise dangers behind opaque designs, forcing customers to blindly belief what they can’t confirm.
Transparency permits customers to be told and conscious of the actual safety circumstances of their units. Discovering and publishing vulnerabilities may be uncomfortable for a model, however it’s what makes the ecosystem extra strong and dependable.
Safety evolution: a shared duty
Safety evolves alongside expertise. The one option to sustain is to share discoveries overtly with the group. At the moment’s disclosure suits into this logic, giving everybody the chance to know and assess dangers, even when they’re purely theoretical.
For many who want to study extra, the total technical advisory is out there on the Tropic Sq. weblog.
Trezor: pioneers of self-custody
Based in 2013, Trezor invented the idea of the {hardware} pockets and is in the present day probably the most trusted title in self-custody, with over 2 million customers worldwide. The corporate develops open-source safety instruments that give customers full management over their digital belongings. The Trezor Protected 7 is the corporate’s flagship product, designed to supply the very best stage of safety and transparency.
—
In abstract, though the TROPIC01 chip vulnerability is technically important, it doesn’t compromise the safety of Trezor Protected 7 customers’ funds. The clear and collaborative method adopted by Trezor and Tropic Sq. represents a virtuous mannequin for the complete digital safety business.