What Bitcoin Did

View Original

Ledger Hack Revisited with Pascal Gauthier & Matt Johnson

Interview | Description | Timestamps | Show Notes

See this content in the original post

iTunes | Google | Spotify | Stitcher | SoundCloud | YouTube | Deezer | TuneIn | RSS Feed

Your browser doesn't support HTML5 audio

Ledger Hack Revisited with Pascal Gauthier & Matt Johnson - WBD336 Peter McCormack

Download Episode MP3 File
The file will open in a new window. Click down arrow to download the file.



See this content in the original post

Location: Remotely
Date: Wednesday 14th April
Company: Ledger
Role: CEO & CISO

In July last year, Ledger was the victim of a data breach, with hackers gaining customer email addresses, phone numbers and physical addresses. Over 270,000 people were affected by the hack.

Pascal Gauthier, CEO of Ledger, previously came onto the podcast to answer questions shortly after the hack. Since the interview, Ledger asked to sponsor the podcast, and one condition was that they come back on the show and answer listener questions.

I believe it is vital to have a healthy and competitive marketplace for hardware wallets, firstly to give customers a choice and competition between the manufacturers pushes them to be better.

Listeners of the podcast still have questions regarding the hack, so I asked the Ledger CEO and CISO Pascal Gauthier and Matt Johnson to come on the show and answer some more questions and explain the changes they have made internally.

See this content in the original post

00:04:41: Introductions
00:05:40: Matt's role at Ledger
00:08:05:
The value of a competitive marketplace for security
00:10:30:
The Ledger hack in summary
00:14:03:
Security steps put in place at Ledger
00:16:16:
An API key explained
00:17:37:
Security risks of working with third parties
00:20:17: The risk of a physical attack
00:23:31:
The Phishing Bounty
00:25:22:
Ledger's transparency
00:26:56:
Identifying the hackers
00:28:06:
Matt's entry to Bitcoin
00:29:58:
Will there be another hack?
00:34:38: Customer data retention
00:37:45:
Legal requirements for data retention
00:41:18:
Trust through transparency
00:43:01: Being responsible for your own online security
00:45:57:
Compensation and support for open-source development
00:49:39:
Ledger's restrictions on open-source code
00:51:35:
Ledger's Random Number Generator
00:52:09:
Ledger Live features… location data
00:52:47:
… coin control and other advanced features
00:55:33:
… full node support
00:56:09:
Fake resellers
00:56:44:
Final comments



See this content in the original post

SUPPORT THE SHOW

If you enjoy The What Bitcoin Did Podcast you can help support the show by doing the following:

If you are interested in sponsoring the show, you can read more about that here or please feel free to drop me an email to discuss options.


SPONSORS


See this content in the original post

Connect with Pascal:

Connect with Matt:

Connect with Ledger

Mentioned in the interview:

Other relevant WBD podcasts:


See this content in the original post