On March 15, 2025, Ledger's security team published a technical note detailing a laser fault injection attack on Tangem's hardware wallet. The attack requires only a modest laboratory setup and leaves the private key exposed within minutes of physical access. But the most damning detail? The vulnerability is unpatchable. Not a firmware update. Not a software patch. The defect is etched into the silicon itself. Verification precedes trust, every single time.
Tangem has carved a niche with its sleek card-shaped hardware wallets, marketed as the ultimate blend of portability and security. The devices use a pre-loaded chip, write-once memory, and no updatable firmware—a design choice that supposedly prevents remote attacks. Yet that same immutability now seals its fate. The attack, a laser fault injection (LFI), uses a focused beam to flip bits in the chip's logic, bypassing the signature verification or directly reading the secret key. Unlike side-channel attacks that passively observe, LFI is an active intrusion. The technique is well-documented in academic literature, but its practical demonstration on a commercial wallet is a milestone. During my own audits of hardware security modules for a custody firm in 2022, I saw how even secure elements could be susceptible to glitching when physical shielding was absent. Tangem appears to have omitted such shielding.
Let us get technical. The LFI attack exploits the chip's vulnerability to single-event upsets. A laser pulse of precise wavelength and timing induces a transient current in the transistor, causing it to switch state. In a secure environment, this can alter the program counter, skip conditional checks, or expose memory cells. For Tangem, the researchers targeted the moment just before private key derivation. By injecting a fault at the critical instruction, they forced the chip to output the seed in cleartext. The entire process, from alignment to extraction, takes under an hour. We do not guess the crash; we trace the fault.
The key question: why is it unpatchable? Because Tangem's chip is a one-time programmable microcontroller. Unlike Ledger's use of a secure element (SE) with updatable firmware and physical countermeasures (metal shields, optical detectors), Tangem's chip has no such layers. The business decision to use a generic, low-cost chip for the card form factor traded security for thinness. I have seen this trade-off before: in 2020, while verifying Ethereum 2.0 deposit contracts, I noticed that the deposit mechanism's gas limits were set to accommodate hardware with limited processing power—a compromise that worked because the protocol adjusted. Here, there is no adjustment. The code is law, but history is the judge.
From a protocol resilience standpoint, this is a classic case of a single point of failure. The entire security model of the Tangem wallet collapses once an attacker has physical possession. Contrast this with Ledger's model: even if an attacker gains physical access to a Ledger Nano, the secure element's firmware can be updated to patch against new attacks. The SE chip itself is designed with active shields that detect laser intrusion and erase the key. Tangem's lack of such redundancy is not a bug; it is a feature of their minimalistic design. That design was never audited against sophisticated physical attacks—only against logical ones.
But the obvious narrative is 'Tangem bad, Ledger good.' A deeper look reveals a more uncomfortable truth. The laser attack, while impressive, is expensive and requires direct access to the wallet for a sustained period. For 99.9% of users, the risk of being targeted by a laser-wielding adversary with physical access to their card is negligible. The real vulnerability is not the laser; it is the user's false sense of security. Furthermore, Ledger's disclosure is not purely altruistic. As a competitor, they have an incentive to highlight Tangem's flaws. In my experience analyzing the Terra/Luna collapse, I saw how code architecture determined market crashes; here, the architecture of disclosure determines market winners. Truth is not consensus; it is consensus verified.
This attack exposes a blind spot in the entire hardware wallet industry—the assumption that 'cold storage' means 'air-gapped and unreachable.' A wallet in your pocket is not cold; it is warm and vulnerable to physical attacks. Even Ledger's secure element has theoretical vulnerabilities. The industry's fixation on hardware security often ignores the human element: reckless seed phrase storage, phishing, and social engineering cause far more losses than LFI. Yet the media will amplify the laser drama while ignoring the daily crypto thefts that cost billions. In 2024, during my technical due diligence for a zero-knowledge rollup, I found that the team had focused entirely on cryptographic soundness while neglecting the implementation risk of their prover circuits. The same pattern holds here: Tangem emphasized form factor but forgot the physical layer.
The Tangem laser attack is a wake-up call, but not for the reasons you think. It forces the market to acknowledge that no hardware is invincible. The chain remembers what the ego forgets. Within three years, every major hardware wallet will incorporate active laser defense—optical sensors that scramble the chip state upon detecting a beam. Tangem will either pivot to a new, updatable design or fade into obsolescence. For current owners: migrate your funds immediately. For future buyers: demand proof of physical attack resilience. Verification precedes trust, every single time.
This event will be cited in security textbooks as the moment the hardware wallet industry realized that 'unpatchable' is unforgivable. The fault is in the silicon. The fix is in the design. We do not guess the crash; we trace the fault.

