The KeepKey development team has done it again, releasing firmware updates for the production client (v5.9.0) as well as the beta client (v5.9.1). The updates include security fixes, additional token support, and enhanced features. Responsible Disclosure Security Update Chrisitan Reitter, in coordination with Dr. Jochen Hoenicke, responsibly disclosed a security vulnerability to the KeepKey development…

As of October 1, all KeepKey users must sign up for a ShapeShift Membership account to continue exchanging digital assets on their device. WHY MEMBERSHIP? As a ShapeShift Member, you’ll have exclusive access to benefits including higher trading limits, rewards on trading volume, and more. Don’t miss out – the first 100,000 users to complete account…

In order to maintain top security, you will be asked to update both the bootloader to v1.1.0 and then the firmware to v5.5.0 on your KeepKey device. Follow the steps below to complete both updates. This is a mandatory security update. For more details see the release notes. If you run into any problems during…

In early June, ShapeShift’s security team was notified by Christian Reitter of multiple potential security vulnerabilities in KeepKey’s firmware which were discovered during academic research with Dr. Jochen Hoenicke. After immediate investigation, the development team confirmed a buffer underrun vulnerability present in both the bootloader and firmware of the device. To KeepKey’s knowledge, there have…

UPDATE: After further review, another firmware update (v5.1.1) was necessary for all devices to work with this fix.   KeepKey was notified of a potential security vulnerability on March 18, 2018, by Satoshi Labs. An undocumented flaw was discovered in all STMicroelectronics STM32F205 chips that integrate and drive the entire KeepKey experience.  A mandatory firmware update (v5.1.0)…

Older Posts