Trezor Safe 7 Secure Element Flaw Found in Lab Test, Funds Still Safe Says Trezor

Trezor says a flaw found in the TROPIC01 secure element chip inside the Trezor Safe 7 does not put users’ funds at risk, even though Ledger’s security team managed to poke a real hole in the hardware under lab conditions.

• TROPIC01 flaw found during independent testing
• Laser fault injection used in a lab attack
• Three-layer security still protects Safe 7 users
• No normal firmware fix for a hardware-level issue
• Public disclosure followed review by Trezor and Tropic Square

The disclosure centers on a vulnerability in the TROPIC01 secure element, a chip used in the Trezor Safe 7. Ledger Donjon, Ledger’s white-hat research team, found the flaw during an independent audit. According to the findings, the attack could be reproduced only with specialized lab equipment and laser fault injection, a method that deliberately disrupts a chip’s behavior to expose weaknesses.

In plain English: the chip can be tricked under highly controlled conditions. Ledger Donjon said the flaw could expose some chip secrets and bypass firmware signature checks, which are the safety checks meant to ensure a device only accepts approved software. Tropic Square, the company behind TROPIC01, also found another way to abuse the same weakness, this time potentially revealing a secret tied to PIN-related chip functions.

That sounds bad because it is bad. But it is not the same thing as “someone can drain your wallet from across the internet.” There’s a very big difference between a remote phishing attack and a physical, lab-grade hardware attack with lasers, calibration, and enough time to make even a patient engineer reach for coffee.

Why Trezor says Safe 7 funds remain safe

Trezor CEO Matej Žák says the flaw does not compromise user funds because the Safe 7 was built with multiple independent security layers.

“Because the Trezor Safe 7 was built with multiple independent security layers, a vulnerability in TROPIC01 does not put user funds at risk,”

— Trezor CEO Matej Žák

The Safe 7 uses three hardware layers: TROPIC01, OPTIGA Trust M, and STM32U5. Each layer has a job in the security stack, so one weak point does not automatically collapse the entire device. That’s the whole point of layered defense: if one lock is picked, the thief still has to get through the next two doors without setting off alarms.

For readers newer to hardware wallets, a secure element is a specialized chip designed to store and process sensitive data in a tightly controlled way. It’s often used for things like PIN handling, device authentication, and protecting secrets that should never leak. Hardware wallets rely on these chips because they are supposed to make stealing private keys much harder than attacking normal consumer electronics.

But “supposed to” is doing a lot of work there. Security is never one shiny chip with a marketing budget and a halo. It’s the full design, the supply chain, the firmware, the physical casing, and the assumptions made by the engineers. Once a device is under serious physical attack, the rules change fast.

What Ledger Donjon actually found

Ledger Donjon told Tropic Square in January 2026 that it had carried out a laser fault injection attack under lab conditions. The goal of that kind of test is not to guess passwords or brute-force keys like a movie villain hacking on a laptop in a van. It’s to force a chip into an abnormal state and see whether the security controls still hold up.

The result was a hardware vulnerability in the TROPIC01 secure element chip. Ledger said it could extract some chip secrets and bypass firmware signature checks. Tropic Square found a separate attack path using the same weakness, which could expose a secret linked to PIN-related chip functions.

That matters because firmware signature checks are one of the things that keep unauthorized code from running on a device. If an attacker can trick a chip into accepting the wrong software, the door opens to further abuse. In this case, though, Trezor says the flaw still does not translate into full access to the wallet, the PIN, or recovery funds.

Why this disclosure matters even if users are not in immediate danger

The issue sits at the hardware level, so it cannot be fixed through a normal remote firmware update.

“The issue sits at the hardware level, so it cannot be fixed through a normal remote firmware update.”

That is the ugly part of hardware security. If a bug lives in software, developers can often patch it. If the weakness lives in silicon, the fix may require a redesign, a new chip revision, or a completely different security approach. No amount of “please install the update” can rewrite physics.

Still, Trezor and Tropic Square chose to disclose the flaw publicly after reviewing the findings. That is the right move. Open disclosure gives users and security researchers a clearer picture of real-world risk, instead of burying the problem under nondisclosure paperwork and corporate face-saving. Security by secrecy is a clown show when real money is involved.

The bigger lesson for self-custody crypto

This disclosure lands in the long-running tension around hardware wallet security: users want simple assurances, but the reality is more complicated. Hardware wallets are a major upgrade over leaving coins on exchanges or on internet-connected devices, yet they are not magic boxes that defeat every possible attack.

That’s especially true when physical access is involved. Prior reporting has already highlighted risks tied to physical supply-chain attacks on Trezor devices and to ESP32 chip risks in some wallets, including potential private key theft. The common thread is simple: the security of a wallet is only as strong as the full chain around it, from the chip to the firmware to the factory floor.

For most users, the practical takeaway is not panic, it’s realism. A well-designed hardware wallet can dramatically reduce exposure to remote malware and casual theft. It does not make a user invincible. Self-custody is powerful, but it also means taking responsibility for the device, the recovery phrase, and where the wallet was bought.

If there’s one boring but vital rule here, it’s this: buy hardware wallets from official channels whenever possible, keep recovery phrases offline, and treat signs of tampering as a red flag. A fancy wallet bought from a random marketplace seller is not “self-custody,” it’s a gamble with your coins.

What Trezor Safe 7 users should know

Trezor says no action is required from Safe 7 users. Based on the current disclosure, the flaw does not give an attacker direct access to user funds in normal conditions. The device’s layered architecture is meant to absorb exactly this kind of chip-level weakness without letting the whole security model fall apart.

That said, the flaw is real, and it is a reminder that hardware security claims should always be tested, not blindly worshipped. The crypto industry has a bad habit of slapping “secure” on products like it’s a magic spell. It isn’t. Good security is messy, expensive, and constantly challenged by people trying to break it.

Ledger and Trezor’s rivalry can look like corporate knife-fighting, but there’s value in it too. Rival research teams exposing each other’s weak points is uncomfortable, sure, but it also pushes the hardware wallet sector to do better. If a device is guarding someone’s savings, it should survive more than a glossy brochure and a launch event.

Key questions and takeaways

Is the Trezor Safe 7 compromised?

No. Trezor says the TROPIC01 flaw does not compromise user funds because the Safe 7 uses multiple independent security layers.

What did Ledger Donjon find?

A hardware vulnerability in the TROPIC01 secure element chip, discovered during an independent audit using lab testing.

Can an attacker steal funds remotely?

Not according to Trezor. The attack described requires physical lab conditions and advanced equipment, not a simple remote exploit.

Can this be fixed with a firmware update?

No. Because the weakness is at the hardware level, it cannot be patched through a normal remote firmware update.

What does “secure element” mean?

It’s a specialized chip built to protect sensitive data such as PIN-related functions, authentication checks, and other secrets inside a hardware wallet.

What should users do now?

Use official purchase channels, keep recovery phrases offline, stay alert for tampering, and understand that layered security matters more than any single chip claim.

Why does this matter if funds are safe?

Because it shows how hardware wallet security really works: one flaw does not always equal instant theft, but it does prove that no device is beyond scrutiny.

The bottom line is straightforward. Trezor Safe 7 users are not being told to scramble for the exits, but the disclosed TROPIC01 flaw is a real reminder that hardware wallet security depends on the full design, not one chip with a good reputation. In crypto, “safe” should mean tested, not trusted on vibes.