Security Updates & Responsible Disclosure On February 9, 2018, researchers Dusha Igor and Andrey Lovyannikov of ASP Labs responsibly disclosed a format string attack vulnerability on KeepKey devices. The KeepKey development team immediately responded to the disclosure and patched the vulnerable code. A mandatory firmware update was made available to all devices on February 21,
ERC-20 Beta #2 Release Notes Firmware v5.0.1, KeepKey client v5.0.1, Device client v5.0.0-beta.1 KeepKey is pleased to announce updates to our current beta release. This release includes the following fixes: All correct PIN’s are recognized. In rare situations, the device previously would not detect that the user had entered the correct PIN. API services will
MyCrypto Now Offers Digital Asset Exchange Via the ShapeShift API We're excited to announce our newest partnership with multi-asset blockchain interface, MyCrypto! From the team who developed MyEtherWallet, MyCrypto is an open-source, client-side tool for interacting with the Ethereum blockchain. The integration with ShapeShift now allows users to quickly and securely convert between blockchain assets
ShapeShift (2% of Bitcoin Network) is Now Batching Transactions Shapeshift AG, one of the first major companies to adopt Bitcoin's Segwit update last fall, is now batching Bitcoin (BTC) transactions to further reduce costs to customers and improve the health of the Bitcoin network. The digital asset exchange platform, which processes roughly 10,000 Bitcoin orders
KeepKey Safe from Man in The Middle (MiTM) Due to recent news in the hardware wallet space, KeepKey wants to assure all users that their KeepKey wallets are safe. Specifically, KeepKey hardware wallet operations are safe from the recently discussed Man in The Middle (MiTM) attack vector. MiTM has the potential to attack hardware wallets
KeepKey Users Not Affected: Spectre & Meltdown In recent days, it has come to light that Spectre and Meltdown, two hardware vulnerabilities, impact many CPUs. The attacks work with operating systems and processing chips allowing hackers access to personal information including passwords and encrypted keys. These attacks are only effective on devices that have an
Debunking Potential Vulnerability In August, KeepKey was notified about two potential physical vulnerability hardware attacks. Upon notification, the development team resolved the first potential attack and pushed a firmware update. At the time, the second attack, the so called ‘15 second’ hack, was determined to be ineffective on KeepKey’s hardware, and no further action was
Scam Awareness Reminder Your security is our number one concern at KeepKey. We want to remind our customers to be vigilant when purchasing and using a KeepKey. It is a sad truth that phishing attempts for personal information will always exist. Please be aware there are copycat sites mimicking KeepKey. The best way to avoid
General Security Reminder In our constant endeavor to provide our users with secure services, we want to impress upon our customers the importance of using best practices when it comes to security. Never divulge your recovery sentence to anyone Store your recovery sentence in a place that is secure from theft. Never input your recovery
Bitcoin Gold Fork As October 25, 2017 quickly approaches, we would like to clarify KeepKey’s intentions for the Bitcoin Gold (BTG) fork. BTG is a fork of the Bitcoin blockchain that is scheduled to occur at block 491407. The current recommendation by the BTG team is that users hold Bitcoin in their preferred wallet by