Ledger‘s latest security audit unrelated to their data breach in June. Recently, famous hardware wallet company Ledger reported that they had passed a notable safety assessment, known as SOC 2 Form 1. This qualification came after a major breach of data in June that the company endured. According to comments from a Ledger official, Ledger did not, however, plan to perform its security audit because of the breach.
“Ledger is always seeking to raise the security standards and has been working on getting the attestation prior to the data breach,” the representative said. In October, news of the completed SOC 2 Form 1 audit by Ledger came, effectively giving the market a confidence level based on a trusted mainstream security benchmark.
“The SOC II attestation refers both to the System, in this case, Ledger Vault only, and the Organization: Ledger as a whole,” the representative explained. “Hence, if the SOC 2 Type 1 only applies to Ledger Vault, the Ledger organization as a whole has been audited (onboarding of collaborators, third party interactions, etc.).”
In July, Ledger was made aware of a flaw in the database, which they quickly fixed. However, the company has revealed a previous major data breach that occurred in June, leaking the names , addresses, and other potentially sensitive information of thousands of customers.