Ledger Donjon Finds MediaTek Flaw That Can Expose Wallet Keys on Some Android Phones

Ledger researchers say a flaw in some MediaTek-powered Android phones could let attackers extract encrypted data, including private keys and passwords, within seconds through a USB connection if they gain device access.

49d ago

Fact Check

The claim accurately reflects the findings published by Ledger's Donjon team in December 2025. Multiple sources confirm the specific chip (MediaTek Dimensity 7300), the nature of the attack (physical access, fault injection), and the potential impact (theft of hot wallet keys).

Summary

Ledger security researchers reported a major flaw affecting some Android smartphone chips that could allow attackers to extract encrypted user data, including passwords and private keys, in seconds using a USB connection. The new report broadens earlier coverage that focused on hot wallet seed phrases and the MediaTek Dimensity 7300 chip, indicating the vulnerability can expose a wider range of sensitive data on affected devices. Existing reporting said the attack requires physical access, and Ledger Donjon had previously linked the issue to a weakness in the MediaTek secure boot chain on some Android phones.

Terms & Concepts

Private keys: Secret cryptographic credentials that control access to cryptocurrency funds and authorize transactions.
Secure boot chain: A device startup security process that verifies trusted code before the system fully loads.
Hot wallet: A cryptocurrency wallet connected to the internet, making it easier to use but generally more exposed to security risks than offline storage.