Ledger Donjon Flags Critical MediaTek Android Bug Exposing Wallet PINs and Seed Phrases

Ledger's security unit Donjon disclosed a critical vulnerability in Android firmware on MediaTek processors that allows attackers with physical access to extract device PINs and encrypted wallet seed phrases in approximately 45 seconds, The Block reports. The flaw affects major wallet applications including Trust Wallet, Kraken Wallet, and Phantom, with an estimated 25% of Android devices potentially exposed. Ledger advises users to apply the latest security patches from MediaTek and device manufacturers to mitigate the risk.