Ledger Hack Revisited with Pascal Gauthier & Matt Johnson
Your browser doesn't support HTML5 audio
Download Episode MP3 File
The file will open in a new window. Click down arrow to download the file.
Location: Remotely
Date: Wednesday 14th April
Company: Ledger
Role: CEO & CISO
In July last year, Ledger was the victim of a data breach, with hackers gaining customer email addresses, phone numbers and physical addresses. Over 270,000 people were affected by the hack.
Pascal Gauthier, CEO of Ledger, previously came onto the podcast to answer questions shortly after the hack. Since the interview, Ledger asked to sponsor the podcast, and one condition was that they come back on the show and answer listener questions.
I believe it is vital to have a healthy and competitive marketplace for hardware wallets, firstly to give customers a choice and competition between the manufacturers pushes them to be better.
Listeners of the podcast still have questions regarding the hack, so I asked the Ledger CEO and CISO Pascal Gauthier and Matt Johnson to come on the show and answer some more questions and explain the changes they have made internally.
00:04:41: Introductions
00:05:40: Matt's role at Ledger
00:08:05: The value of a competitive marketplace for security
00:10:30: The Ledger hack in summary
00:14:03: Security steps put in place at Ledger
00:16:16: An API key explained
00:17:37: Security risks of working with third parties
00:20:17: The risk of a physical attack
00:23:31: The Phishing Bounty
00:25:22: Ledger's transparency
00:26:56: Identifying the hackers
00:28:06: Matt's entry to Bitcoin
00:29:58: Will there be another hack?
00:34:38: Customer data retention
00:37:45: Legal requirements for data retention
00:41:18: Trust through transparency
00:43:01: Being responsible for your own online security
00:45:57: Compensation and support for open-source development
00:49:39: Ledger's restrictions on open-source code
00:51:35: Ledger's Random Number Generator
00:52:09: Ledger Live features… location data
00:52:47: … coin control and other advanced features
00:55:33: … full node support
00:56:09: Fake resellers
00:56:44: Final comments
SUPPORT THE SHOW
If you enjoy The What Bitcoin Did Podcast you can help support the show by doing the following:
Become a Patron and get access to shows early or help contribute
Make a tip:
Subscribe on iTunes | Spotify | Stitcher | SoundCloud | YouTube | TuneIn | RSS Feed
Leave a review on iTunes
Share the show and episodes with your friends and family
Subscribe to the newsletter on my website
Follow me on Twitter Personal | Twitter Podcast | Instagram | Medium | YouTube
If you are interested in sponsoring the show, you can read more about that here or please feel free to drop me an email to discuss options.
SPONSORS
Connect with Pascal:
On Twitter
On LinkedIn
On Crunchbase
On Ledger
Connect with Matt:
On Ledger
Connect with Ledger
Mentioned in the interview:
Other relevant WBD podcasts: