You can buy the old version of Nano S and the firmware will also be the old version, but there are no guarantees that the old version doesn't have vulnerabilities. After all the events with the Ledger, I tend to expect bad things from them rather than good ones, and therefore, I expect a catch even in old devices. I don't rule out that my fears are groundless, but as I have said repeatedly, in the case of finances, it is necessary to be extremely scrupulous in matters of safety and security. My tactic is simple: it's better to take precautions than take risks.

The Trezor (like any firm that depends on sales of its devices) will promise anything to attract and retain its customers. This is the harsh truth of business. I prefer to believe facts, not promises. The Ledger example shows that promises are not kept and all sorts of things are broken. Moreover, the Trezor already has a dubious partnership that raises questions and alarms users of their devices.