MediaTek Patches Bug Allowing Attackers To Steal Crypto Seeds
By Ciaran Lyons
Published on March 12, 2026.
Mobile phone chipmaker, MediaTek, has patched a vulnerability affecting its chipsets that could have allowed attackers to steal crypto seed phrases on affected devices. The flaw was discovered by Ledger's white-hat security team, Donjon, who shared the vulnerability with Mediatek before a patch was issued on Jan. 5. The vulnerability came from MediaTk’s secure boot chain, a security mechanism that ensures a phone starts safely and only with authorized software during startup. An attacker with access to an Android phone could connect it to a computer via USB and gain access to sensitive data on the device, including crypto wallet seed phrases. Ledger has urged users to update their devices and does not anticipate this to be an ongoing issue.
Related Articles
Bank of England Signals Flexibility on Sterling Stablecoin Holding Limits
The Bank of England is considering alternative ways to manage stablecoin risks without imposing holding limits, despite industry opposition to the proposal.
U.S.–China summit just got tougher after new Section 301 probe: Hinrich Foundation
The Hinrich Foundation reports a significant increase in tensions between the US and China due to a new Section 301 probe.
Iran-linked hacker group launches debilitating cyberattack against US medical company
Iran-linked hacker group Handala launched a debilitating cyberattack against US medical company Stryker, disrupting operations and stealing data, prompting a warning from Strykers.