
Laser Fault Injection on Tangem Cards: The Real Fix Is an Assumption That Hardware Fails
The headline is easy to misread. The interesting part is not that a laser exists; it is that a hardware wallet reportedly has a path where induced physical fault can push the device into a password reset state, and some of those cards cannot be patched after the fact.
That is the real security lesson. If a card can be driven into an alternate state by fault induction, then “tamper-resistant” is only a statement about difficulty, not a guarantee. For devices that are meant to hold money, identity, or signing authority, that distinction matters a lot.
What the Tangem report says happened
The public report says Tangem wallet cards were affected by a laser fault injection attack that resets wallet passwords on cards that cannot be patched.
That is the only part I am treating as confirmed from the source material here. Everything else in this post is either a general technical explanation of fault injection or a cautious inference about why the issue matters.
What stands out is the combination of two facts:
- a physical attack can influence the device state
- the affected cards are not patchable in the normal software sense
Those two together are much worse than a normal app bug. A software bug is often fixed by shipping a new build. A fault-sensitive hardware path in immutable silicon can become a permanent design liability.
Why laser fault injection matters more than a normal bug
Fault injection versus software exploitation
A normal software exploit usually follows the program’s intended execution path until some input or parser mistake gives the attacker control. The target is logic.
Fault injection is different. The target is the machine itself. The attacker is not trying to convince the software to misbehave with a crafted request alone. They are trying to perturb the chip at the right moment so it mis-executes, skips a check, corrupts a register, or lands in a fallback path that should have been unreachable.
That changes the threat model:
| Property | Software exploit | Fault injection |
|---|---|---|
| Target | Code and logic | Physical execution conditions |
| Prerequisite | Bug in parsing, auth, state handling | Proximity and specialized equipment |
| Typical fix | Patch software | Redesign hardware, fuse logic, or harden recovery paths |
| Repeatability | Often high once the bug is known | Often requires timing and calibration |
| Risk boundary | Network, app, API | Physical device, secure element, packaging |
The practical point is simple: if a security boundary only exists when the chip behaves perfectly, it is not a strong boundary.
Why patchability changes the risk
A patchable device can at least narrow the blast radius after discovery. You can ship a firmware update, disable a code path, or add extra checks around the risky behavior.
A non-patchable device is different. If the vulnerability lives in the hardware behavior or in immutable boot logic, then the security team may be stuck with one of three bad options:
- accept the risk,
- replace hardware,
- add external controls that compensate for the weakness.
That is why “can’t be patched” is not a footnote. It is part of the severity.
How this kind of card attack usually works
Targeting the chip at the right moment
I am not going to turn this into an attack recipe, but the general mechanism is well known in hardware security research.
A fault-injection setup aims to disturb the chip during a narrow time window. If the disturbance lands at the right instant, the device may:
- skip a comparison
- misread a configuration bit
- branch incorrectly
- fail open into a recovery state
- corrupt a variable that gates authentication
A laser is one way to do that. It can induce a localized disturbance on the die with much finer control than a blunt physical attack. The attacker is not “breaking the card” in the ordinary sense. They are trying to make the card briefly lie to itself.
Forcing the device into a bad state instead of stealing a key
This is where people often fixate on key extraction. That is not always the point.
Sometimes the attacker does not need the secret key at all. It can be enough to force the device into a state where:
- the password check is bypassed,
- a reset path is triggered,
- a secure setting is cleared,
- or a fallback mode becomes available.
That is especially dangerous when the state change is security-relevant and the device treats the new state as legitimate.
If the Tangem report is accurate as described, the valuable lesson is not “lasers are scary.” It is that a fault can apparently trigger a reset behavior that the product architecture did not make impossible.
What is confirmed from the report and what still needs verification
Confirmed claims from the public reporting
From the source material provided, I can confirm only this:
- the public report describes a laser attack against Tangem wallet cards
- the reported effect is a password reset
- the report says the affected cards cannot be patched
That is enough to justify concern. It is also enough to avoid pretending we know more than the report actually proves.
Inferences that should not be overstated
These points are plausible, but I would not state them as settled facts without primary technical disclosure from Tangem or the researchers:
- whether the vulnerable behavior is in the secure element, the card firmware, or a recovery flow around it
- whether the attack is practical only in a lab or feasible with moderate equipment
- whether the attack can be repeated reliably across all affected cards
- whether the reset behavior leads to funds loss, account takeover, or only local device reset
- whether any exploitation requires prior physical access, dismantling, or chip-level alignment
The difference matters. A report can be real and still leave the exact blast radius unknown.
Why tamper-resistant is not the same as tamper-proof
The assumption hardware designers need to make
Hardware designers need to assume the chip will fail, misbehave, or be coerced under physical stress. That is not pessimism; it is realistic threat modeling.
A tamper-resistant design says, “This is expensive to attack.”
A tamper-proof design claims, implicitly or explicitly, “This cannot be meaningfully attacked.”
Security people should be careful with that second claim. It is usually too strong.
A secure element can be very good at preventing ordinary software compromise and still lose to physical manipulation if the design lets any corrupted state become privileged. That is the failure mode to fear.
The failure mode that security teams often miss
The mistake is assuming that a security primitive is safe because the happy path is safe.
For example:
- a device authenticates correctly when powered normally
- a recovery branch exists for field support or manufacturing
- a reset path clears credentials or reinitializes policy
- the team assumes the recovery path is unreachable in real use
That last assumption is where the bug lives.
If an attacker can induce just enough fault to reach the recovery path, then the recovery path is not a support feature anymore. It is an attack surface.
Practical checks for wallet and hardware-auth vendors
Ask whether the security boundary survives fault induction
If you build or buy hardware-auth devices, ask one question first:
What happens if the device state is corrupted at the exact moment a security decision is made?
Do not accept “the chip is secure” as an answer. Ask for evidence that the system fails closed when:
- authentication state is partially corrupted
- a boot-time integrity check is skipped
- nonvolatile state becomes inconsistent
- reset or recovery logic is invoked unexpectedly
A good vendor can explain the boundary. A weak one waves at certification and hopes nobody asks about fault models.
Look for fallback paths, reset logic, and recovery abuse
The ugly truth is that many embedded systems are full of fallback logic because support teams need some way to recover bricked devices.
That logic deserves the same scrutiny as the main auth path.
Check for:
- factory reset paths that erase policy too easily
- recovery modes that trust local state without external verification
- “safe defaults” that are only safe when not attacker-triggered
- pairing or enrollment flows that can be re-run after a fault
- inconsistent behavior between cold boot, soft reset, and brownout-like conditions
If the security model depends on “this path should never happen,” then I would not trust it until it has been tested against induced fault conditions.
Defensive lessons for users and integrators
Treat physical security claims as probabilistic
For users, the immediate lesson is uncomfortable but important: physical-device security is not binary.
A card can be:
- good enough for everyday threat models
- resistant to casual tampering
- still vulnerable to advanced laboratory attacks
That does not make the product useless. It means the claim must match the threat model. If you are storing high-value assets, the relevant question is not whether the device is “secure.” It is whether the security still holds under physical adversarial conditions you actually care about.
Prefer layered controls over a single secure element
I would not build a wallet or auth system around a single device claim, especially if the device cannot be patched.
Safer patterns include:
- requiring more than one factor or device for critical actions
- using server-side risk checks for unusual re-enrollment or reset events
- binding recovery to separate identity controls
- separating low-value convenience from high-value authorization
- monitoring for unexpected device reset or reprovisioning events
In other words: if one card failure can collapse the whole trust model, the architecture is too brittle.
What a real fix would look like
Design for detected failure, not silent recovery
The best fix is not “make the laser harder.”
The better fix is to make corrupted state visibly unsafe. That means:
- fail closed when integrity checks are uncertain
- require external attestation before accepting a reset
- preserve security policy across unexpected resets
- treat recovery flows as privileged operations, not conveniences
- make it impossible for a transient fault to become a trusted state transition
If the device is unsure, it should refuse to proceed, not quietly invent a fresh identity.
Reduce the blast radius when device state is corrupted
A robust design also limits what a reset can do.
Good containment might mean:
- resetting only non-sensitive counters, not credentials
- requiring out-of-band confirmation for any re-enrollment
- separating password resets from key material
- rate-limiting or physically binding recovery to trusted service channels
- logging and surfacing state changes so downstream systems can react
That is the core principle: if hardware can fail, failure must not look like authorization.
Conclusion: hardware security starts from the assumption that hardware fails
My take is blunt: the reported Tangem issue should be read as a design warning, not a niche lab stunt.
If a laser can push a non-patchable card into a password reset state, then the product boundary is too dependent on ideal hardware behavior. That is exactly the kind of assumption security teams should stop making. Hardware fails. Chips glitch. Recovery paths get abused. And the real fix is to design the system so that failure does not become trust.
That is the standard I would hold any hardware wallet or secure-auth vendor to. Not “can it withstand a best-case attacker?” but “what happens when the chip lies to itself for a microsecond?”


