The vulnerability existed in the 1.6.0 firmware version of Trezor One’s firmware. With ver. 1.6.1, they fixed it. If someone was facing an issue like a lost PIN but had a newer firmware version, I wonder if it would work if he downgraded to version 1.6.0 and had Kingpin work on the device to extract the seed like he did for the guy in the video? I know that it is possible to downgrade to an older Trezor firmware, but would the data still be extractable from the chip, that’s the question.
You can downgrade it without knowing the PIN? That would mean any security mechanisms implemented through firmware upgrades would be pointless, since an attacker could just downgrade to an older version and exploit the vulnerabilities that were fixed through upgrades; I can't imagine that's possible.If you can downgrade, you will be able to downgrade like in the video. The update doesn't 'remove' the data permanently from insecure storage or something like that; v1.6.0 copies the secure data into RAM at boot, it will do that no matter if it was updated and downgraded again.
It also seems like a pretty standard attack / setup (still great, no question!): voltage glitch, automatic reboot and getting serial console, then read RAM. I suspect after this was shown, many will try to replicate it. So maybe update your wallets.
