Tangem crypto wallet card unpatchable laser password reset security flaw
Vulnerability
Summary
Hide ▲
Show ▼
A Tangem crypto wallet card vulnerability lets a precisely timed laser pulse reset the card's password, creating a path for a thief with the physical card to take control of the wallet. The flaw sits in the Samsung S3D232A chip recovery logic and affects every card sold because Tangem cards cannot take software updates. The research was disclosed to Tangem on February 10, 2026 and remains unpatchable.
Related Happenings
South Korea's National Tax Service Ledger cold wallet seed phrase exposure
Data Leak
H score16
First: 28.02.2026 17:17
Last: 28.02.2026 17:17
Sources 1
About this happening:
The **South Korea's National Tax Service** publicly exposed the **mnemonic recovery phrase** for a seized **Ledger cold wallet**, creating immediate risk that anyone could control...
South Korea's National Tax Service Ledger cold wallet seed phrase exposure
Data LeakAbout this happening: The **South Korea's National Tax Service** publicly exposed the **mnemonic recovery phrase** for a seized **Ledger cold wallet**, creating immediate risk that anyone could control...
Timeline
-
10.07.2026 17:51 2 articles · 2h ago
Ledger Donjon discloses a laser-based Tangem wallet password reset flaw
Initial DisclosureLedger's Donjon security team disclosed a laser fault injection attack against the Tangem crypto wallet card that can reset the card's password to an attacker-chosen value, giving control of the wallet to whoever holds the physical card. Tangem cards cannot take software updates, so the flaw affects cards already sold and has no software patch path.
Show sources
- Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched — thehackernews.com — 10.07.2026 17:51
- Laser Attack Resets Tangem Wallet Passwords on Cards That Can't Be Patched — thehackernews.com — 10.07.2026 17:51