I think it's clear to most that Ledger has the technical capability to do this, but what many may not realize is that they have effectively left the open door for hackers. This could potentially allow unauthorized extraction of SEEDs from Ledger devices. That’s the point I was trying to make in my previous post. They must realize that Secure Elements in HW have to be sure as hell sealed.
The code for remote seed extraction for the Ledger Recover feature should have never been allowed to find its way to the Universal firmware that gets installed on all Ledger hardware wallets when you update your firmware. They basically tricked their users to install it and only then announced that the code has been merged but each user can decide to activate the feature or not. The only way this should have happened (since they made the decision to create Ledger Recover) was to create a separate firmware with Ledger Recover on it, announce it, and allow each HW owner to decide whether to install the Universal and clean firmware or the one bearing Ledger Recover.