Why Are Hardware Wallets Under Scrutiny?
Trezor Chief Commercial Officer Danny Sanders has pushed back against recent criticism of crypto hardware wallets, arguing that the category still offers the strongest practical form of self-custody for most users despite clear usability problems. The debate began after blockchain investigator ZachXBT said he did not advise using hardware wallets for important tasks such as signing transactions or storing funds. He suggested that users managing serious value could instead dedicate a separate iPhone only for storing funds and signing transactions. The criticism touched a sensitive issue in crypto custody. Hardware wallets are widely promoted as the safer alternative to keeping assets on exchanges or internet-connected wallets, but users often complain about clunky interfaces, firmware updates, transaction delays, and compatibility problems with newer decentralized finance tools. Sanders acknowledged that frustration, especially when a software or firmware update blocks an urgent or high-value transaction. “I actually get it, and I agree that we have clunky solutions out there,” Sanders said. “It’s really hard to build on the edge of security and usability.” His response points to a broader custody trade-off. The most secure tools are often harder to use, while more convenient tools usually expose users to more online risk. That trade-off becomes sharper as crypto users move from simple storage into staking, bridging, DeFi transactions, multisig operations, and mobile-first asset management.Is a Dedicated iPhone Safer Than a Hardware Wallet?
Sanders argued that ZachXBT’s recommendation may make sense only for a narrow group of sophisticated users managing large sums in high-pressure environments. In that setting, a single hardware wallet may not be enough, but replacing hardware wallets entirely with a mobile device creates a different risk profile. “People who have to manage a lot of value in high-stakes environments need different setups, and just a single hardware wallet is not the best solution for that,” Sanders said. “But it doesn’t mean you can just say everything is garbage.” A stripped-down iPhone could be useful as part of an advanced custody setup, Sanders said, but he warned that mobile devices carry more attack surfaces. Unlike a dedicated hardware wallet, an iPhone has Wi-Fi, Bluetooth, iMessage, cellular connectivity, and a broader operating system environment. Those features improve usability but also create more ways for malicious software, remote exploits, or user error to enter the signing process. “You have Wi-Fi and Bluetooth and iMessage and cellular,” Sanders said. “Even generating your keys on a wallet on your iPhone is more risky than with a hardware wallet.” Hardware wallets also give users a separate screen to verify transaction details before signing. That separation is important because the signing device can show what the user is approving even if a computer or browser interface has been compromised.Investor Takeaway
The debate is not simply hardware wallet versus smartphone. It is about matching custody design to the user’s risk level. Retail holders, active DeFi users, funds, and protocol teams may need different setups rather than one universal security model.
