Ledger, the hardware wallet provider, recently upgraded its firmware to version 2.2.1. They introduced an additional safety net called the \u201cLedger Recover\u201d that the crypto community is vehemently rejecting.\n<\/p>\n
While upgrades are critical considering the fast-paced nature of cryptocurrencies, Ledger is now being\u00a0criticized<\/a> after offering an option for users to store their seed phrases online. The hardware wallet manufacturer said this feature makes it easier for users to quickly recover their seed phrases in case they misplace them.<\/p>\n The subscription-based service called \u201cLedger Recover\u201d effectively grants the manufacturer access to clients\u2019 seed phrases; defeating the purpose of using a cold wallet in the first place.<\/p>\n Related Reading: DOJ Crypto Task Force Goes After DeFi Hackers As Illicit Activity Soars<\/a><\/p>\n The platform says Recover is an \u201cID-based key recovery service that provides backup\u201d for seed phrases for coins like Bitcoin.<\/p>\n <\/a><\/p>\n Earlier, Ledger\u2019s co-founder\u00a0said<\/a> Recover will split a seed phrase into three shards. A section is distributed to Ledger, Coincover \u2014 a crypto custody firm, and EscrowTech, a company that escrows codes. Therefore, if a user loses access to their cold wallet by misplacing their private key, two of the three custodians can combine their code to recover the wallet\u2019s contents.<\/p>\n While this could help, as it is designed, a cold or hardware wallet is non-custodial. Technically, it should be delinked from the internet. By default, Ledger wallet holders should always be responsible for their seed phrases.<\/p>\n Seed phrases allow users to sign transactions confirming that they are the true owners. Whenever they are misplaced, the token owner losses access to all their coins.\u00a0<\/p>\n Although the \u201cLedger Recover\u201d feature is a precaution, some even claim this move makes Ledger a \u201chot\u201d wallet. A hot wallet is a cryptocurrency wallet connected to the internet and is often the target of nefarious agents. Whenever hackers strike, they aim to wipe clean assets stored in hot wallets like MetaMask or Coinbase Wallet.<\/p>\n Besides Ledger requiring access to private keys, the \u201cRecover\u201d feature demands that users verify their identity as part of the know-your-customer (KYC) rules.\u00a0<\/p>\n As part of this verification and compliance with KYC, users must submit their government-issued cards. Critics say this is against the principles of crypto that work toward preserving privacy and diffusing power from one entity.\u00a0<\/p>\n Trusting private identity documents to a centralized entity can be disastrous. In 2020, Ledger\u2019s database was\u00a0compromised<\/a>, and hackers dumped hundreds of thousands of wallet buyers\u2019 confidential information, including physical addresses. <\/p>\n Hackers\u00a0later<\/a>\u00a0used the same dumped details to target clients in an extortion campaign that affected even some of the top executives of Ledger.<\/p>","protected":false},"excerpt":{"rendered":" <\/p>\n Ledger, the hardware wallet provider, recently upgraded its firmware to version 2.2.1. They introduced an additional safety net called the \u201cLedger Recover\u201d that the crypto community is vehemently rejecting.\n<\/p>\n While upgrades are critical considering the fast-paced nature of cryptocurrencies, Ledger is now being\u00a0criticized<\/a> after offering an option for users to store their seed phrases online. The hardware wallet manufacturer said this feature makes it easier for users to quickly recover their seed phrases in case they misplace them.<\/p>\n The subscription-based service called \u201cLedger Recover\u201d effectively grants the manufacturer access to clients\u2019 seed phrases; defeating the purpose of using a cold wallet in the first place.<\/p>\n Related Reading: DOJ Crypto Task Force Goes After DeFi Hackers As Illicit Activity Soars<\/a><\/p>\n The platform says Recover is an \u201cID-based key recovery service that provides backup\u201d for seed phrases for coins like Bitcoin.<\/p>\n <\/a><\/p>\n Earlier, Ledger\u2019s co-founder\u00a0said<\/a> Recover will split a seed phrase into three shards. A section is distributed to Ledger, Coincover \u2014 a crypto custody firm, and EscrowTech, a company that escrows codes. Therefore, if a user loses access to their cold wallet by misplacing their private key, two of the three custodians can combine their code to recover the wallet\u2019s contents.<\/p>\n While this could help, as it is designed, a cold or hardware wallet is non-custodial. Technically, it should be delinked from the internet. By default, Ledger wallet holders should always be responsible for their seed phrases.<\/p>\n Seed phrases allow users to sign transactions confirming that they are the true owners. Whenever they are misplaced, the token owner losses access to all their coins.\u00a0<\/p>\n Although the \u201cLedger Recover\u201d feature is a precaution, some even claim this move makes Ledger a \u201chot\u201d wallet. A hot wallet is a cryptocurrency wallet connected to the internet and is often the target of nefarious agents. Whenever hackers strike, they aim to wipe clean assets stored in hot wallets like MetaMask or Coinbase Wallet.<\/p>\n Besides Ledger requiring access to private keys, the \u201cRecover\u201d feature demands that users verify their identity as part of the know-your-customer (KYC) rules.\u00a0<\/p>\n As part of this verification and compliance with KYC, users must submit their government-issued cards. Critics say this is against the principles of crypto that work toward preserving privacy and diffusing power from one entity.\u00a0<\/p>\n Trusting private identity documents to a centralized entity can be disastrous. In 2020, Ledger\u2019s database was\u00a0compromised<\/a>, and hackers dumped hundreds of thousands of wallet buyers\u2019 confidential information, including physical addresses. <\/p>\nThe \u201cLedger Recover\u201d Feature Rejected<\/h2>\n
KYC Requirements And Learning From The Past<\/h2>\n
The \u201cLedger Recover\u201d Feature Rejected<\/h2>\n
KYC Requirements And Learning From The Past<\/h2>\n