Back to Blog

KeepKey Users Not Affected: Spectre & Meltdown

In recent days, it has come to light that Spectre and Meltdown, two hardware vulnerabilities, impact many CPUs. The attacks work with operating systems and processing chips allowing hackers access to personal information including passwords and encrypted keys. These attacks are only effective on devices that have an operating system with privileged and unprivileged processes running concurrently.

Your KeepKey device is not affected by these threats. KeepKey operates on bare-metal and uses a single privileged process. This means it does not run code unsigned by KeepKey and does not allow for unprivileged processes to gain access. Without unprivileged access and the ability to execute code from unknown origins the attack execution cannot materialize.

On these grounds, your KeepKey is immune to Spectre and Meltdown attacks. Hackers cannot access the information on your KeepKey, including your private keys, through the processing chip. All data remains safe and secure on your KeepKey hardware wallet.